Vulnerabilites related to qualcomm - qcs404
cve-2020-3611
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 07:37
Severity ?
Summary
u'XBL SEC clears only ZI region when loading Qualcomm-signed segments can lead to improper access issue' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: APQ8098, Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:37:55.518Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8098, Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'XBL SEC clears only ZI region when loading Qualcomm-signed segments can lead to improper access issue' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Access Control Issue in Core",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:38",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3611",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8098, Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'XBL SEC clears only ZI region when loading Qualcomm-signed segments can lead to improper access issue' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Access Control Issue in Core",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3611",
      datePublished: "2020-09-08T09:31:38",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:37:55.518Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-13998
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-05 00:05
Severity ?
Summary
u'Lack of check that the TX FIFO write and read indices that are read from shared RAM are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.161Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Lack of check that the TX FIFO write and read indices that are read from shared RAM are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Integer Overflow or Wraparound Issue in Qualcomm IPC",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:29",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-13998",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Lack of check that the TX FIFO write and read indices that are read from shared RAM are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Integer Overflow or Wraparound Issue in Qualcomm IPC",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-13998",
      datePublished: "2020-09-08T09:31:29",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.161Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14112
Vulnerability from cvelistv5
Published
2020-04-16 10:46
Modified
2024-08-05 00:12
Severity ?
Summary
Potential buffer overflow while processing CBF frames due to lack of check of buffer length before copy in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:43.382Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Potential buffer overflow while processing CBF frames due to lack of check of buffer length before copy in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-04-16T10:46:15",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14112",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Potential buffer overflow while processing CBF frames due to lack of check of buffer length before copy in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14112",
      datePublished: "2020-04-16T10:46:16",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:43.382Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14043
Vulnerability from cvelistv5
Published
2020-06-02 15:05
Modified
2024-08-05 00:05
Severity ?
Summary
Out of bound read in Fingerprint application due to requested data is being used without length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9150, MDM9205, MDM9650, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: Kamorta, MDM9150, MDM9205, MDM9650, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.142Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Kamorta, MDM9150, MDM9205, MDM9650, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Out of bound read in Fingerprint application due to requested data is being used without length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9150, MDM9205, MDM9650, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Information Exposure Issue in Biometrics",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-06-02T15:05:40",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14043",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Kamorta, MDM9150, MDM9205, MDM9650, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Out of bound read in Fingerprint application due to requested data is being used without length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9150, MDM9205, MDM9650, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Information Exposure Issue in Biometrics",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14043",
      datePublished: "2020-06-02T15:05:40",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.142Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14030
Vulnerability from cvelistv5
Published
2020-03-05 08:56
Modified
2024-08-05 00:05
Severity ?
Summary
The size of a buffer is determined by addition and multiplications operations that have the potential to overflow due to lack of bound check in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, Rennell, SC8180X, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: MDM9205, QCS404, Rennell, SC8180X, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.213Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "MDM9205, QCS404, Rennell, SC8180X, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "The size of a buffer is determined by addition and multiplications operations that have the potential to overflow due to lack of bound check in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, Rennell, SC8180X, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in TrustZone",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-03-05T08:56:12",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14030",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "MDM9205, QCS404, Rennell, SC8180X, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "The size of a buffer is determined by addition and multiplications operations that have the potential to overflow due to lack of bound check in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, Rennell, SC8180X, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in TrustZone",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14030",
      datePublished: "2020-03-05T08:56:12",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.213Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-10483
Vulnerability from cvelistv5
Published
2020-04-16 10:46
Modified
2024-08-04 22:24
Severity ?
Summary
Side channel issue in QTEE due to usage of non-time-constant comparison function such as memcmp or strcmp in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T22:24:18.510Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Side channel issue in QTEE due to usage of non-time-constant comparison function such as memcmp or strcmp in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Information Exposure issue in QTEE",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-04-16T10:46:00",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-10483",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Side channel issue in QTEE due to usage of non-time-constant comparison function such as memcmp or strcmp in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Information Exposure issue in QTEE",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-10483",
      datePublished: "2020-04-16T10:46:00",
      dateReserved: "2019-03-29T00:00:00",
      dateUpdated: "2024-08-04T22:24:18.510Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-2241
Vulnerability from cvelistv5
Published
2019-07-25 16:33
Modified
2024-08-04 18:42
Severity ?
Summary
While rendering the layout background, Error status check is not caught properly and also incorrect status handling is being done leading to unintended SUI behaviour in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX24, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletinsx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX24, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T18:42:50.896Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX24, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "While rendering the layout background, Error status check is not caught properly and also incorrect status handling is being done leading to unintended SUI behaviour in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX24, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Detection of Error Condition Without Action in Content Protection",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-07-25T16:33:17",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-2241",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX24, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "While rendering the layout background, Error status check is not caught properly and also incorrect status handling is being done leading to unintended SUI behaviour in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX24, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Detection of Error Condition Without Action in Content Protection",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-2241",
      datePublished: "2019-07-25T16:33:17",
      dateReserved: "2018-12-10T00:00:00",
      dateUpdated: "2024-08-04T18:42:50.896Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3643
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 07:37
Severity ?
Summary
u'Information disclosure issue can occur due to partial secure display-touch session tear-down' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:37:55.789Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Information disclosure issue can occur due to partial secure display-touch session tear-down' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Information Exposure in Content Protection",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:42",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3643",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Information disclosure issue can occur due to partial secure display-touch session tear-down' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Information Exposure in Content Protection",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3643",
      datePublished: "2020-09-08T09:31:42",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:37:55.789Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2018-13927
Vulnerability from cvelistv5
Published
2019-07-22 13:47
Modified
2024-08-05 09:21
Severity ?
Summary
Debug policy with invalid signature can be loaded when the debug policy functionality is disabled by using the parallel image loading in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 410/12, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletinsx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 410/12, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T09:21:40.657Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 410/12, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Debug policy with invalid signature can be loaded when the debug policy functionality is disabled by using the parallel image loading in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 410/12, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Authentication in Core",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-07-22T13:47:45",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2018-13927",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 410/12, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Debug policy with invalid signature can be loaded when the debug policy functionality is disabled by using the parallel image loading in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 410/12, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Authentication in Core",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2018-13927",
      datePublished: "2019-07-22T13:47:45",
      dateReserved: "2018-07-11T00:00:00",
      dateUpdated: "2024-08-05T09:21:40.657Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14101
Vulnerability from cvelistv5
Published
2020-07-30 11:40
Modified
2024-08-05 00:12
Severity ?
Summary
Out of bounds read can happen in diag event set mask command handler when user provided length in the command request is less than expected length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:43.270Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Out of bounds read can happen in diag event set mask command handler when user provided length in the command request is less than expected length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Input Validation in Diag Services",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-07-30T11:40:29",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14101",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Out of bounds read can happen in diag event set mask command handler when user provided length in the command request is less than expected length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Input Validation in Diag Services",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14101",
      datePublished: "2020-07-30T11:40:29",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:43.270Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-11124
Vulnerability from cvelistv5
Published
2020-09-09 06:25
Modified
2024-08-04 11:21
Severity ?
Summary
u'Possible use-after-free while accessing diag client map table since list can be reallocated due to exceeding max client limit.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, Nicobar, QCS404, QCS405, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC8180X, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music Version: MDM9607, Nicobar, QCS404, QCS405, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC8180X, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T11:21:14.621Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "MDM9607, Nicobar, QCS404, QCS405, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC8180X, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Possible use-after-free while accessing diag client map table since list can be reallocated due to exceeding max client limit.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, Nicobar, QCS404, QCS405, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC8180X, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Use After Free Issues in Diag Services",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-09T06:25:18",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-11124",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "MDM9607, Nicobar, QCS404, QCS405, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC8180X, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Possible use-after-free while accessing diag client map table since list can be reallocated due to exceeding max client limit.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, Nicobar, QCS404, QCS405, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC8180X, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Use After Free Issues in Diag Services",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-11124",
      datePublished: "2020-09-09T06:25:18",
      dateReserved: "2020-03-31T00:00:00",
      dateUpdated: "2024-08-04T11:21:14.621Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-13992
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-05 00:05
Severity ?
Summary
u'Out of bound memory access if stack push and pop operation are performed without doing a bound check on stack top' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.164Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Out of bound memory access if stack push and pop operation are performed without doing a bound check on stack top' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in kernel",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:27",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-13992",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Out of bound memory access if stack push and pop operation are performed without doing a bound check on stack top' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in kernel",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-13992",
      datePublished: "2020-09-08T09:31:28",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.164Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2018-13916
Vulnerability from cvelistv5
Published
2019-11-21 14:38
Modified
2024-08-05 09:14
Severity ?
Summary
Out-of-bounds memory access in Qurt kernel function when using the identifier to access Qurt kernel buffer to retrieve thread data. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8976, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM8150, SM8250, Snapdragon_High_Med_2016, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8976, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM8150, SM8250, Snapdragon_High_Med_2016, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T09:14:47.229Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8976, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM8150, SM8250, Snapdragon_High_Med_2016, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Out-of-bounds memory access in Qurt kernel function when using the identifier to access Qurt kernel buffer to retrieve thread data. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8976, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM8150, SM8250, Snapdragon_High_Med_2016, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Validation of Array Index in Kernel",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-11-21T14:38:21",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2018-13916",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8976, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM8150, SM8250, Snapdragon_High_Med_2016, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Out-of-bounds memory access in Qurt kernel function when using the identifier to access Qurt kernel buffer to retrieve thread data. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8976, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM8150, SM8250, Snapdragon_High_Med_2016, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Validation of Array Index in Kernel",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2018-13916",
      datePublished: "2019-11-21T14:38:21",
      dateReserved: "2018-07-11T00:00:00",
      dateUpdated: "2024-08-05T09:14:47.229Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-2315
Vulnerability from cvelistv5
Published
2019-11-21 14:38
Modified
2024-08-04 18:49
Severity ?
Summary
While invoking the API to copy from fd or local buffer to the secure buffer, Parameters being populated are from non secure environment. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T18:49:47.703Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "While invoking the API to copy from fd or local buffer to the secure buffer, Parameters being populated are from non secure environment. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Permissions, Privileges and Access Controls Issue in Content Protection",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-11-21T14:38:22",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-2315",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "While invoking the API to copy from fd or local buffer to the secure buffer, Parameters being populated are from non secure environment. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Permissions, Privileges and Access Controls Issue in Content Protection",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-2315",
      datePublished: "2019-11-21T14:38:22",
      dateReserved: "2018-12-10T00:00:00",
      dateUpdated: "2024-08-04T18:49:47.703Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2018-13924
Vulnerability from cvelistv5
Published
2019-07-22 13:47
Modified
2024-08-05 09:21
Severity ?
Summary
Lack of check to prevent the buffer length taking negative values can lead to stack overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9150, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA6174A, QCA8081, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletinsx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: IPQ8074, MDM9150, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA6174A, QCA8081, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T09:21:40.734Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "IPQ8074, MDM9150, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA6174A, QCA8081, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Lack of check to prevent the buffer length taking negative values can lead to stack overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9150, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA6174A, QCA8081, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Stack Based Buffer Overflow in Multi Mode Call Processor",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-07-22T13:47:45",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2018-13924",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "IPQ8074, MDM9150, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA6174A, QCA8081, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Lack of check to prevent the buffer length taking negative values can lead to stack overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9150, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA6174A, QCA8081, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Stack Based Buffer Overflow in Multi Mode Call Processor",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2018-13924",
      datePublished: "2019-07-22T13:47:45",
      dateReserved: "2018-07-11T00:00:00",
      dateUpdated: "2024-08-05T09:21:40.734Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-10546
Vulnerability from cvelistv5
Published
2020-03-05 08:56
Modified
2024-08-04 22:24
Severity ?
Summary
Buffer overflow can occur in WLAN firmware while parsing beacon/probe_response frames during roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8096, APQ8096AU, IPQ6018, IPQ8074, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCS404, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: APQ8096, APQ8096AU, IPQ6018, IPQ8074, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCS404, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T22:24:18.693Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8096, APQ8096AU, IPQ6018, IPQ8074, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCS404, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Buffer overflow can occur in WLAN firmware while parsing beacon/probe_response frames during roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8096, APQ8096AU, IPQ6018, IPQ8074, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCS404, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-03-05T08:56:03",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-10546",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8096, APQ8096AU, IPQ6018, IPQ8074, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCS404, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Buffer overflow can occur in WLAN firmware while parsing beacon/probe_response frames during roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8096, APQ8096AU, IPQ6018, IPQ8074, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCS404, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-10546",
      datePublished: "2020-03-05T08:56:03",
      dateReserved: "2019-03-29T00:00:00",
      dateUpdated: "2024-08-04T22:24:18.693Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3667
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 07:44
Severity ?
Summary
u'Buffer Overflow in mic calculation for WPA due to copying data into buffer without validating the length of buffer' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCS404, QCS405, QCS605, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCS404, QCS405, QCS605, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:44:50.107Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCS404, QCS405, QCS605, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Buffer Overflow in mic calculation for WPA due to copying data into buffer without validating the length of buffer' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCS404, QCS405, QCS605, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:45",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3667",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCS404, QCS405, QCS605, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Buffer Overflow in mic calculation for WPA due to copying data into buffer without validating the length of buffer' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCS404, QCS405, QCS605, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3667",
      datePublished: "2020-09-08T09:31:45",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:44:50.107Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-2339
Vulnerability from cvelistv5
Published
2019-11-21 14:38
Modified
2024-08-04 18:49
Severity ?
Summary
Out of bound access due to lack of check of whiltelist array size while reading the image elf segments. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T18:49:47.747Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Out of bound access due to lack of check of whiltelist array size while reading the image elf segments. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Restriction of Operation Within the Bounds of Memory in QTEE",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-11-21T14:38:22",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-2339",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Out of bound access due to lack of check of whiltelist array size while reading the image elf segments. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Restriction of Operation Within the Bounds of Memory in QTEE",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-2339",
      datePublished: "2019-11-21T14:38:22",
      dateReserved: "2018-12-10T00:00:00",
      dateUpdated: "2024-08-04T18:49:47.747Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-13994
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-05 00:05
Severity ?
Summary
u'Lack of check that the current received data fragment size of a particular packet that are read from shared memory are less than the actual packet size can lead to memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.087Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Lack of check that the current received data fragment size of a particular packet that are read from shared memory are less than the actual packet size can lead to memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Integer Overflow or Wraparound Issue in Trustzone",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:28",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-13994",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Lack of check that the current received data fragment size of a particular packet that are read from shared memory are less than the actual packet size can lead to memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Integer Overflow or Wraparound Issue in Trustzone",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-13994",
      datePublished: "2020-09-08T09:31:28",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.087Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14123
Vulnerability from cvelistv5
Published
2020-07-30 11:40
Modified
2024-08-05 00:12
Severity ?
Summary
Possible buffer overflow and over read possible due to missing bounds checks for fixed limits if we consider widevine HLOS client as non-trustable in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:43.401Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Possible buffer overflow and over read possible due to missing bounds checks for fixed limits if we consider widevine HLOS client as non-trustable in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Input Validation in Content Protection",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-07-30T11:40:29",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14123",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Possible buffer overflow and over read possible due to missing bounds checks for fixed limits if we consider widevine HLOS client as non-trustable in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Input Validation in Content Protection",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14123",
      datePublished: "2020-07-30T11:40:29",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:43.401Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-2275
Vulnerability from cvelistv5
Published
2019-11-06 17:11
Modified
2024-08-04 18:42
Severity ?
Summary
While deserializing any key blob during key operations, buffer overflow could occur exposing partial key information if any key operations are invoked(Depends on CVE-2018-13907) in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletinsx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T18:42:51.125Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "While deserializing any key blob during key operations, buffer overflow could occur exposing partial key information if any key operations are invoked(Depends on CVE-2018-13907) in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Possible Buffer Overflow in Keymaster Key Deserialization",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-11-06T17:11:25",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-2275",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "While deserializing any key blob during key operations, buffer overflow could occur exposing partial key information if any key operations are invoked(Depends on CVE-2018-13907) in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Possible Buffer Overflow in Keymaster Key Deserialization",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-2275",
      datePublished: "2019-11-06T17:11:25",
      dateReserved: "2018-12-10T00:00:00",
      dateUpdated: "2024-08-04T18:42:51.125Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14065
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-05 00:05
Severity ?
Summary
u'Pointer double free in HavenSvc due to not setting the pointer to NULL after freeing it' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.153Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Pointer double free in HavenSvc due to not setting the pointer to NULL after freeing it' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Double Free Issue in TrustZone",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:31",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14065",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Pointer double free in HavenSvc due to not setting the pointer to NULL after freeing it' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Double Free Issue in TrustZone",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14065",
      datePublished: "2020-09-08T09:31:31",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.153Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14027
Vulnerability from cvelistv5
Published
2020-03-05 08:56
Modified
2024-08-05 00:05
Severity ?
Summary
Buffer overflow due to lack of upper bound check on channel length which is used for a loop. in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.158Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Buffer overflow due to lack of upper bound check on channel length which is used for a loop. in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-03-05T08:56:11",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14027",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Buffer overflow due to lack of upper bound check on channel length which is used for a loop. in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14027",
      datePublished: "2020-03-05T08:56:11",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.158Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14077
Vulnerability from cvelistv5
Published
2020-06-02 15:05
Modified
2024-08-05 00:12
Severity ?
Summary
Out of bound memory access while processing ese transmit command due to passing Response buffer received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:42.201Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Out of bound memory access while processing ese transmit command due to passing Response buffer received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Incorrect Type Conversion or Cast Issue in Trustzone",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-06-02T15:05:42",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14077",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Out of bound memory access while processing ese transmit command due to passing Response buffer received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Incorrect Type Conversion or Cast Issue in Trustzone",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14077",
      datePublished: "2020-06-02T15:05:42",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:42.201Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-2235
Vulnerability from cvelistv5
Published
2019-07-25 16:33
Modified
2024-08-04 18:42
Severity ?
Summary
Buffer overflow occurs when emulated RPMB is used due to sector size assumptions in the TA rollback protection logic. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletinsx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T18:42:51.117Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Buffer overflow occurs when emulated RPMB is used due to sector size assumptions in the TA rollback protection logic. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in QTEE",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-07-25T16:33:17",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-2235",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Buffer overflow occurs when emulated RPMB is used due to sector size assumptions in the TA rollback protection logic. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in QTEE",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-2235",
      datePublished: "2019-07-25T16:33:17",
      dateReserved: "2018-12-10T00:00:00",
      dateUpdated: "2024-08-04T18:42:51.117Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3645
Vulnerability from cvelistv5
Published
2020-06-02 15:05
Modified
2024-08-04 07:37
Severity ?
Summary
Firmware will hit assert in WLAN firmware If encrypted data length in FILS IE of reassoc response is more than 528 bytes in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:37:55.730Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Firmware will hit assert in WLAN firmware If encrypted data length in FILS IE of reassoc response is more than 528 bytes in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Reachable Assertion in WLAN Firmware",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-06-02T15:05:48",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3645",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Firmware will hit assert in WLAN firmware If encrypted data length in FILS IE of reassoc response is more than 528 bytes in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Reachable Assertion in WLAN Firmware",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3645",
      datePublished: "2020-06-02T15:05:48",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:37:55.730Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-2338
Vulnerability from cvelistv5
Published
2019-12-12 08:30
Modified
2024-08-04 18:49
Severity ?
Summary
Crafted image that has a valid signature from a non-QC entity can be loaded which can read/write memory that belongs to the secure world in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: MDM9205, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T18:49:47.380Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "MDM9205, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Crafted image that has a valid signature from a non-QC entity can be loaded which can read/write memory that belongs to the secure world in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Use of Out-of-range Pointer Offset in QTEE",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-12-12T08:30:44",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-2338",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "MDM9205, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Crafted image that has a valid signature from a non-QC entity can be loaded which can read/write memory that belongs to the secure world in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Use of Out-of-range Pointer Offset in QTEE",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-2338",
      datePublished: "2019-12-12T08:30:44",
      dateReserved: "2018-12-10T00:00:00",
      dateUpdated: "2024-08-04T18:49:47.380Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-2240
Vulnerability from cvelistv5
Published
2019-07-25 16:33
Modified
2024-08-04 18:42
Severity ?
Summary
While sending the rendered surface content to the screen, Error handling is not properly checked results in an unpredictable behaviour in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9880, QCA9886, QCA9980, QCN5502, QCS404, QCS605, SD 210/SD 212/SD 205, SD 425, SD 600, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletinsx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: IPQ4019, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9880, QCA9886, QCA9980, QCN5502, QCS404, QCS605, SD 210/SD 212/SD 205, SD 425, SD 600, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T18:42:50.915Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "IPQ4019, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9880, QCA9886, QCA9980, QCN5502, QCS404, QCS605, SD 210/SD 212/SD 205, SD 425, SD 600, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "While sending the rendered surface content to the screen, Error handling is not properly checked results in an unpredictable behaviour in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9880, QCA9886, QCA9980, QCN5502, QCS404, QCS605, SD 210/SD 212/SD 205, SD 425, SD 600, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Detection of Error condition Without Action in Content Protection",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-07-25T16:33:17",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-2240",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "IPQ4019, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9880, QCA9886, QCA9980, QCN5502, QCS404, QCS605, SD 210/SD 212/SD 205, SD 425, SD 600, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "While sending the rendered surface content to the screen, Error handling is not properly checked results in an unpredictable behaviour in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9880, QCA9886, QCA9980, QCN5502, QCS404, QCS605, SD 210/SD 212/SD 205, SD 425, SD 600, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Detection of Error condition Without Action in Content Protection",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-2240",
      datePublished: "2019-07-25T16:33:17",
      dateReserved: "2018-12-10T00:00:00",
      dateUpdated: "2024-08-04T18:42:50.915Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14076
Vulnerability from cvelistv5
Published
2020-06-22 07:10
Modified
2024-08-05 00:12
Severity ?
Summary
Buffer overflow occurs while processing an subsample data length out of range due to lack of user input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:42.167Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Buffer overflow occurs while processing an subsample data length out of range due to lack of user input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in TrustZone",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-06-22T07:10:36",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14076",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Buffer overflow occurs while processing an subsample data length out of range due to lack of user input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in TrustZone",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14076",
      datePublished: "2020-06-22T07:10:36",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:42.167Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3619
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 07:37
Severity ?
Summary
u'Non-secure memory is touched multiple times during TrustZone\u2019s execution and can lead to privilege escalation or memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8098, IPQ8074, Kamorta, MDM9150, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, QCA8081, QCS404, QCS605, QCS610, QM215, Rennell, SA415M, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8098, IPQ8074, Kamorta, MDM9150, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, QCA8081, QCS404, QCS605, QCS610, QM215, Rennell, SA415M, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:37:55.528Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8098, IPQ8074, Kamorta, MDM9150, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, QCA8081, QCS404, QCS605, QCS610, QM215, Rennell, SA415M, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Non-secure memory is touched multiple times during TrustZone\\u2019s execution and can lead to privilege escalation or memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8098, IPQ8074, Kamorta, MDM9150, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, QCA8081, QCS404, QCS605, QCS610, QM215, Rennell, SA415M, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Time-of-check Time-of-use Race Condition in Graphics",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:38",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3619",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8098, IPQ8074, Kamorta, MDM9150, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, QCA8081, QCS404, QCS605, QCS610, QM215, Rennell, SA415M, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Non-secure memory is touched multiple times during TrustZone\\u2019s execution and can lead to privilege escalation or memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8098, IPQ8074, Kamorta, MDM9150, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, QCA8081, QCS404, QCS605, QCS610, QM215, Rennell, SA415M, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Time-of-check Time-of-use Race Condition in Graphics",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3619",
      datePublished: "2020-09-08T09:31:39",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:37:55.528Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3668
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 07:44
Severity ?
Summary
u'Buffer overflow while parsing PMF enabled MCBC frames due to frame length being lesser than what is expected while parsing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:44:49.935Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Buffer overflow while parsing PMF enabled MCBC frames due to frame length being lesser than what is expected while parsing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:45",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3668",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Buffer overflow while parsing PMF enabled MCBC frames due to frame length being lesser than what is expected while parsing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3668",
      datePublished: "2020-09-08T09:31:45",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:44:49.935Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14110
Vulnerability from cvelistv5
Published
2020-04-16 10:46
Modified
2024-08-05 00:12
Severity ?
Summary
Buffer overflow can occur in function wlan firmware while copying association frame content if frame length is more than the maximum buffer size in case of SAP mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:42.806Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Buffer overflow can occur in function wlan firmware while copying association frame content if frame length is more than the maximum buffer size in case of SAP mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-04-16T10:46:15",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14110",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Buffer overflow can occur in function wlan firmware while copying association frame content if frame length is more than the maximum buffer size in case of SAP mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14110",
      datePublished: "2020-04-16T10:46:15",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:42.806Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14130
Vulnerability from cvelistv5
Published
2020-07-30 11:40
Modified
2024-08-05 00:12
Severity ?
Summary
Memory corruption can occurs in trusted application if offset size from HLOS is more than actual mapped buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:42.696Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Memory corruption can occurs in trusted application if offset size from HLOS is more than actual mapped buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Use of Out-of-range Pointer Offset Issue in Content Protection",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-07-30T11:40:30",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14130",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Memory corruption can occurs in trusted application if offset size from HLOS is more than actual mapped buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Use of Out-of-range Pointer Offset Issue in Content Protection",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14130",
      datePublished: "2020-07-30T11:40:30",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:42.696Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-10629
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 22:32
Severity ?
Summary
u'User Process can potentially corrupt kernel virtual page by passing a crafted page in API' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T22:32:00.874Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'User Process can potentially corrupt kernel virtual page by passing a crafted page in API' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Validation of Array Index in kernel",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:27",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-10629",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'User Process can potentially corrupt kernel virtual page by passing a crafted page in API' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Validation of Array Index in kernel",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-10629",
      datePublished: "2020-09-08T09:31:27",
      dateReserved: "2019-03-29T00:00:00",
      dateUpdated: "2024-08-04T22:32:00.874Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14007
Vulnerability from cvelistv5
Published
2020-04-16 10:46
Modified
2024-08-05 00:05
Severity ?
Summary
Due to the use of non-time-constant comparison functions there is issue in timing side channels which can be used as a potential side channel for SUI corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.168Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Due to the use of non-time-constant comparison functions there is issue in timing side channels which can be used as a potential side channel for SUI corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Information Exposure Issue in Content Protection",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-04-16T10:46:08",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14007",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Due to the use of non-time-constant comparison functions there is issue in timing side channels which can be used as a potential side channel for SUI corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Information Exposure Issue in Content Protection",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14007",
      datePublished: "2020-04-16T10:46:08",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.168Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14025
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-05 00:05
Severity ?
Summary
u'When a new session is created, Object is returned that contains TZ addresses and it get passed to HLOS as an handle to refer to a particular session and can cause TZ to jump to a invalid address' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.115Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'When a new session is created, Object is returned that contains TZ addresses and it get passed to HLOS as an handle to refer to a particular session and can cause TZ to jump to a invalid address' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Untrusted Pointer Dereference Issue in Content Protection",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:30",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14025",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'When a new session is created, Object is returned that contains TZ addresses and it get passed to HLOS as an handle to refer to a particular session and can cause TZ to jump to a invalid address' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Untrusted Pointer Dereference Issue in Content Protection",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14025",
      datePublished: "2020-09-08T09:31:30",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.115Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-13995
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-05 00:05
Severity ?
Summary
u'Lack of integer overflow check for addition of fragment size and remaining size that are read from shared memory can lead to memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.210Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Lack of integer overflow check for addition of fragment size and remaining size that are read from shared memory can lead to memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Integer Overflow or Wraparound Issue in Trustzone",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:28",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-13995",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Lack of integer overflow check for addition of fragment size and remaining size that are read from shared memory can lead to memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Integer Overflow or Wraparound Issue in Trustzone",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-13995",
      datePublished: "2020-09-08T09:31:28",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.210Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14113
Vulnerability from cvelistv5
Published
2020-04-16 10:46
Modified
2024-08-05 00:12
Severity ?
Summary
Buffer overflow can occur in In WLAN firmware while unwraping data using CCMP cipher suite during parsing of EAPOL handshake frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:42.752Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Buffer overflow can occur in In WLAN firmware while unwraping data using CCMP cipher suite during parsing of EAPOL handshake frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Integer Overflow to Buffer Overflow Issue in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-04-16T10:46:16",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14113",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Buffer overflow can occur in In WLAN firmware while unwraping data using CCMP cipher suite during parsing of EAPOL handshake frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Integer Overflow to Buffer Overflow Issue in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14113",
      datePublished: "2020-04-16T10:46:16",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:42.752Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-10482
Vulnerability from cvelistv5
Published
2019-12-18 05:25
Modified
2024-08-04 22:24
Severity ?
Summary
Due to the use of non-time-constant comparison functions there is issue in timing side channels which can be used as a potential side channel for SUI corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T22:24:18.624Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Due to the use of non-time-constant comparison functions there is issue in timing side channels which can be used as a potential side channel for SUI corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Information Exposure in Content Protection",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-12-18T05:25:40",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-10482",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Due to the use of non-time-constant comparison functions there is issue in timing side channels which can be used as a potential side channel for SUI corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Information Exposure in Content Protection",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-10482",
      datePublished: "2019-12-18T05:25:40",
      dateReserved: "2019-03-29T00:00:00",
      dateUpdated: "2024-08-04T22:24:18.624Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14015
Vulnerability from cvelistv5
Published
2020-03-05 08:56
Modified
2024-08-05 00:05
Severity ?
Summary
A stack-based buffer overflow exists in the initialization of the identification stage due to lack of check on the number of templates provided. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8096, APQ8096AU, MDM9205, MSM8996, MSM8996AU, Nicobar, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8096, APQ8096AU, MDM9205, MSM8996, MSM8996AU, Nicobar, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.148Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8096, APQ8096AU, MDM9205, MSM8996, MSM8996AU, Nicobar, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "A stack-based buffer overflow exists in the initialization of the identification stage due to lack of check on the number of templates provided. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8096, APQ8096AU, MDM9205, MSM8996, MSM8996AU, Nicobar, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in Biometrics",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-03-05T08:56:10",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14015",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8096, APQ8096AU, MDM9205, MSM8996, MSM8996AU, Nicobar, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "A stack-based buffer overflow exists in the initialization of the identification stage due to lack of check on the number of templates provided. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8096, APQ8096AU, MDM9205, MSM8996, MSM8996AU, Nicobar, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in Biometrics",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14015",
      datePublished: "2020-03-05T08:56:10",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.148Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-2267
Vulnerability from cvelistv5
Published
2020-01-21 06:30
Modified
2024-08-04 18:42
Severity ?
Summary
Locked regions may be modified through other interfaces in secure boot loader image due to improper access control. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T18:42:51.144Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Locked regions may be modified through other interfaces in secure boot loader image due to improper access control. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Permissions, Privileges and Access Control in Boot",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-01-21T06:30:57",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-2267",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Locked regions may be modified through other interfaces in secure boot loader image due to improper access control. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Permissions, Privileges and Access Control in Boot",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-2267",
      datePublished: "2020-01-21T06:30:57",
      dateReserved: "2018-12-10T00:00:00",
      dateUpdated: "2024-08-04T18:42:51.144Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3669
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 07:44
Severity ?
Summary
u'Buffer Overflow issue in WLAN tcp ip verification due to usage of out of range pointer offset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:44:50.107Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Buffer Overflow issue in WLAN tcp ip verification due to usage of out of range pointer offset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Use of Out of Range Pointer Offset in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:46",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3669",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Buffer Overflow issue in WLAN tcp ip verification due to usage of out of range pointer offset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Use of Out of Range Pointer Offset in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3669",
      datePublished: "2020-09-08T09:31:46",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:44:50.107Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-10513
Vulnerability from cvelistv5
Published
2019-12-18 05:25
Modified
2024-08-04 22:24
Severity ?
Summary
Possibility of Null pointer access if the SPDM commands are executed in the non-standard way in Trustzone in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T22:24:18.874Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Possibility of Null pointer access if the SPDM commands are executed in the non-standard way in Trustzone in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Null Pointer Dereference Issue in Trustzone",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-12-18T05:25:41",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-10513",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Possibility of Null pointer access if the SPDM commands are executed in the non-standard way in Trustzone in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Null Pointer Dereference Issue in Trustzone",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-10513",
      datePublished: "2019-12-18T05:25:41",
      dateReserved: "2019-03-29T00:00:00",
      dateUpdated: "2024-08-04T22:24:18.874Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-2239
Vulnerability from cvelistv5
Published
2019-07-25 16:33
Modified
2024-08-04 18:42
Severity ?
Summary
Sanity checks are missing in layout which can lead to SUI Corruption or can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, Snapdragon_High_Med_2016, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletinsx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, Snapdragon_High_Med_2016, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T18:42:50.921Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, Snapdragon_High_Med_2016, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Sanity checks are missing in layout which can lead to SUI Corruption or can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, Snapdragon_High_Med_2016, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Validations of Array Index in Content Protection",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-07-25T16:33:17",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-2239",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, Snapdragon_High_Med_2016, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Sanity checks are missing in layout which can lead to SUI Corruption or can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, Snapdragon_High_Med_2016, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Validations of Array Index in Content Protection",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-2239",
      datePublished: "2019-07-25T16:33:17",
      dateReserved: "2018-12-10T00:00:00",
      dateUpdated: "2024-08-04T18:42:50.921Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-10527
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 22:24
Severity ?
Summary
u'SMEM partition can be manipulated in case of any compromise on HLOS, thus resulting in access to memory outside of SMEM address range which could lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6574AU, QCA8081, QCM2150, QCN7605, QCN7606, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6574AU, QCA8081, QCM2150, QCN7605, QCN7606, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T22:24:18.630Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6574AU, QCA8081, QCM2150, QCN7605, QCN7606, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'SMEM partition can be manipulated in case of any compromise on HLOS, thus resulting in access to memory outside of SMEM address range which could lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6574AU, QCA8081, QCM2150, QCN7605, QCN7606, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Validation of Array Index in Mproc",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:25",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-10527",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6574AU, QCA8081, QCM2150, QCN7605, QCN7606, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'SMEM partition can be manipulated in case of any compromise on HLOS, thus resulting in access to memory outside of SMEM address range which could lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6574AU, QCA8081, QCM2150, QCN7605, QCN7606, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Validation of Array Index in Mproc",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-10527",
      datePublished: "2020-09-08T09:31:25",
      dateReserved: "2019-03-29T00:00:00",
      dateUpdated: "2024-08-04T22:24:18.630Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-10615
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 22:32
Severity ?
Summary
u'Possibility of integer overflow in keymaster 4 while allocating memory due to multiplication of large numcerts value and size of keymaster bob which can lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T22:32:00.986Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Possibility of integer overflow in keymaster 4 while allocating memory due to multiplication of large numcerts value and size of keymaster bob which can lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Integer Overflow to Buffer Overflow in Trusted Application",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:26",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-10615",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Possibility of integer overflow in keymaster 4 while allocating memory due to multiplication of large numcerts value and size of keymaster bob which can lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Integer Overflow to Buffer Overflow in Trusted Application",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-10615",
      datePublished: "2020-09-08T09:31:26",
      dateReserved: "2019-03-29T00:00:00",
      dateUpdated: "2024-08-04T22:32:00.986Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-10539
Vulnerability from cvelistv5
Published
2019-09-30 15:40
Modified
2024-08-04 22:24
Severity ?
Summary
Possible buffer overflow issue due to lack of length check when parsing the extended cap IE header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA8081, QCA9379, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletinsx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA8081, QCA9379, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T22:24:18.709Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA8081, QCA9379, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Possible buffer overflow issue due to lack of length check when parsing the extended cap IE header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA8081, QCA9379, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-09-30T15:40:34",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-10539",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA8081, QCA9379, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Possible buffer overflow issue due to lack of length check when parsing the extended cap IE header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA8081, QCA9379, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-10539",
      datePublished: "2019-09-30T15:40:34",
      dateReserved: "2019-03-29T00:00:00",
      dateUpdated: "2024-08-04T22:24:18.709Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-11156
Vulnerability from cvelistv5
Published
2020-11-02 06:21
Modified
2024-08-04 11:28
Severity ?
Summary
u'Buffer over-read issue in Bluetooth estack due to lack of check for invalid length of L2cap packet received from peer device.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in QCA6390, QCN7605, QCS404, SA415M, SA515M, SC8180X, SDX55, SM8250
References
https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: QCA6390, QCN7605, QCS404, SA415M, SA515M, SC8180X, SDX55, SM8250
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T11:28:13.416Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "QCA6390, QCN7605, QCS404, SA415M, SA515M, SC8180X, SDX55, SM8250",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Buffer over-read issue in Bluetooth estack due to lack of check for invalid length of L2cap packet received from peer device.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in QCA6390, QCN7605, QCS404, SA415M, SA515M, SC8180X, SDX55, SM8250",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Input Validation in Bluetooth SOC",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-11-02T06:21:23",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-11156",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "QCA6390, QCN7605, QCS404, SA415M, SA515M, SC8180X, SDX55, SM8250",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Buffer over-read issue in Bluetooth estack due to lack of check for invalid length of L2cap packet received from peer device.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in QCA6390, QCN7605, QCS404, SA415M, SA515M, SC8180X, SDX55, SM8250",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Input Validation in Bluetooth SOC",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-11156",
      datePublished: "2020-11-02T06:21:23",
      dateReserved: "2020-03-31T00:00:00",
      dateUpdated: "2024-08-04T11:28:13.416Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3666
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 07:44
Severity ?
Summary
u'Out of bounds memory access during memory copy while processing Host command' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ4019, IPQ6018, IPQ8064, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9558, QCA9563, QCA9880, QCA9886, QCA9980, QCN5500, QCN5502, QCS404, QCS405, QCS605, SA6155P, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ4019, IPQ6018, IPQ8064, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9558, QCA9563, QCA9880, QCA9886, QCA9980, QCN5500, QCN5502, QCS404, QCS405, QCS605, SA6155P, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:44:50.046Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ4019, IPQ6018, IPQ8064, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9558, QCA9563, QCA9880, QCA9886, QCA9980, QCN5500, QCN5502, QCS404, QCS405, QCS605, SA6155P, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Out of bounds memory access during memory copy while processing Host command' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ4019, IPQ6018, IPQ8064, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9558, QCA9563, QCA9880, QCA9886, QCA9980, QCN5500, QCN5502, QCS404, QCS405, QCS605, SA6155P, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Stack Based Buffer overflow in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:44",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3666",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ4019, IPQ6018, IPQ8064, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9558, QCA9563, QCA9880, QCA9886, QCA9980, QCN5500, QCN5502, QCS404, QCS405, QCS605, SA6155P, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Out of bounds memory access during memory copy while processing Host command' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ4019, IPQ6018, IPQ8064, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9558, QCA9563, QCA9880, QCA9886, QCA9980, QCN5500, QCN5502, QCS404, QCS405, QCS605, SA6155P, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Stack Based Buffer overflow in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3666",
      datePublished: "2020-09-08T09:31:44",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:44:50.046Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2018-13896
Vulnerability from cvelistv5
Published
2019-07-22 13:47
Modified
2024-08-05 09:14
Severity ?
Summary
XBL_SEC image authentication and other crypto related validations are accessible to a compromised OEM XBL Loader due to missing lock at XBL_SEC stage.. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletinsx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T09:14:47.368Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "XBL_SEC image authentication and other crypto related validations are accessible to a compromised OEM XBL Loader due to missing lock at XBL_SEC stage.. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Possible Exposure of Crypto Resources to XBL Loader",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-07-22T13:47:44",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2018-13896",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "XBL_SEC image authentication and other crypto related validations are accessible to a compromised OEM XBL Loader due to missing lock at XBL_SEC stage.. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Possible Exposure of Crypto Resources to XBL Loader",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2018-13896",
      datePublished: "2019-07-22T13:47:44",
      dateReserved: "2018-07-11T00:00:00",
      dateUpdated: "2024-08-05T09:14:47.368Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-11162
Vulnerability from cvelistv5
Published
2020-11-02 06:21
Modified
2024-08-04 11:28
Severity ?
Summary
u'Possible buffer overflow in MHI driver due to lack of input parameter validation of EOT events received from MHI device side' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8917, MSM8953, Nicobar, QCA6390, QCM2150, QCS404, QCS405, QCS605, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8917, MSM8953, Nicobar, QCA6390, QCM2150, QCS404, QCS405, QCS605, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T11:28:13.355Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8917, MSM8953, Nicobar, QCA6390, QCM2150, QCS404, QCS405, QCS605, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Possible buffer overflow in MHI driver due to lack of input parameter validation of EOT events received from MHI device side' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8917, MSM8953, Nicobar, QCA6390, QCM2150, QCS404, QCS405, QCS605, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in Hardware Engines",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-11-02T06:21:24",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-11162",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8917, MSM8953, Nicobar, QCA6390, QCM2150, QCS404, QCS405, QCS605, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Possible buffer overflow in MHI driver due to lack of input parameter validation of EOT events received from MHI device side' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8917, MSM8953, Nicobar, QCA6390, QCM2150, QCS404, QCS405, QCS605, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in Hardware Engines",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-11162",
      datePublished: "2020-11-02T06:21:24",
      dateReserved: "2020-03-31T00:00:00",
      dateUpdated: "2024-08-04T11:28:13.355Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3679
Vulnerability from cvelistv5
Published
2020-09-09 06:25
Modified
2024-08-04 07:44
Severity ?
Summary
u'During execution after Address Space Layout Randomization is turned on for QTEE, part of code is still mapped at known address including code segments' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, Kamorta, Nicobar, QCS404, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: Bitra, Kamorta, Nicobar, QCS404, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:44:49.932Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Bitra, Kamorta, Nicobar, QCS404, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'During execution after Address Space Layout Randomization is turned on for QTEE, part of code is still mapped at known address including code segments' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, Kamorta, Nicobar, QCS404, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Information Exposure in QTEE",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-09T06:25:21",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3679",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Bitra, Kamorta, Nicobar, QCS404, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'During execution after Address Space Layout Randomization is turned on for QTEE, part of code is still mapped at known address including code segments' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, Kamorta, Nicobar, QCS404, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Information Exposure in QTEE",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3679",
      datePublished: "2020-09-09T06:25:21",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:44:49.932Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-2329
Vulnerability from cvelistv5
Published
2019-11-21 14:38
Modified
2024-08-04 18:49
Severity ?
Summary
Use after free issue in cleanup routine due to missing pointer sanitization for a failed start of a trusted application. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T18:49:47.500Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Use after free issue in cleanup routine due to missing pointer sanitization for a failed start of a trusted application. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Use After Free Issue in QTEE",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-11-21T14:38:22",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-2329",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Use after free issue in cleanup routine due to missing pointer sanitization for a failed start of a trusted application. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Use After Free Issue in QTEE",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-2329",
      datePublished: "2019-11-21T14:38:22",
      dateReserved: "2018-12-10T00:00:00",
      dateUpdated: "2024-08-04T18:49:47.500Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14026
Vulnerability from cvelistv5
Published
2020-03-05 08:56
Modified
2024-08-05 00:05
Severity ?
Summary
Possible buffer overflow in WLAN WMI handler due to lack of ssid length check when copying data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.145Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Possible buffer overflow in WLAN WMI handler due to lack of ssid length check when copying data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy without checking size of input in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-03-05T08:56:11",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14026",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Possible buffer overflow in WLAN WMI handler due to lack of ssid length check when copying data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy without checking size of input in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14026",
      datePublished: "2020-03-05T08:56:11",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.145Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-10540
Vulnerability from cvelistv5
Published
2019-09-30 15:40
Modified
2024-08-04 22:24
Severity ?
Summary
Buffer overflow in WLAN NAN function due to lack of check of count value received in NAN availability attribute in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, MSM8996AU, QCA6174A, QCA6574AU, QCA8081, QCA9377, QCA9379, QCS404, QCS405, QCS605, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletinsx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: IPQ8074, MSM8996AU, QCA6174A, QCA6574AU, QCA8081, QCA9377, QCA9379, QCS404, QCS405, QCS605, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T22:24:18.848Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "IPQ8074, MSM8996AU, QCA6174A, QCA6574AU, QCA8081, QCA9377, QCA9379, QCS404, QCS405, QCS605, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Buffer overflow in WLAN NAN function due to lack of check of count value received in NAN availability attribute in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, MSM8996AU, QCA6174A, QCA6574AU, QCA8081, QCA9377, QCA9379, QCS404, QCS405, QCS605, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-09-30T15:40:34",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-10540",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "IPQ8074, MSM8996AU, QCA6174A, QCA6574AU, QCA8081, QCA9377, QCA9379, QCS404, QCS405, QCS605, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Buffer overflow in WLAN NAN function due to lack of check of count value received in NAN availability attribute in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, MSM8996AU, QCA6174A, QCA6574AU, QCA8081, QCA9377, QCA9379, QCS404, QCS405, QCS605, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-10540",
      datePublished: "2019-09-30T15:40:34",
      dateReserved: "2019-03-29T00:00:00",
      dateUpdated: "2024-08-04T22:24:18.848Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3703
Vulnerability from cvelistv5
Published
2020-11-02 06:21
Modified
2024-08-04 07:44
Severity ?
Summary
u'Buffer over-read issue in Bluetooth peripheral firmware due to lack of check for invalid opcode and length of opcode received from central device(This CVE is equivalent to Link Layer Length Overfow issue (CVE-2019-16336,CVE-2019-17519) and Silent Length Overflow issue(CVE-2019-17518) mentioned in sweyntooth paper)' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8053, APQ8076, AR9344, Bitra, Kamorta, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8917, MSM8937, MSM8940, MSM8953, Nicobar, QCA6174A, QCA9377, QCM2150, QCM6125, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SC8180X, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music Version: APQ8053, APQ8076, AR9344, Bitra, Kamorta, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8917, MSM8937, MSM8940, MSM8953, Nicobar, QCA6174A, QCA9377, QCM2150, QCM6125, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SC8180X, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:44:50.073Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8053, APQ8076, AR9344, Bitra, Kamorta, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8917, MSM8937, MSM8940, MSM8953, Nicobar, QCA6174A, QCA9377, QCM2150, QCM6125, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SC8180X, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Buffer over-read issue in Bluetooth peripheral firmware due to lack of check for invalid opcode and length of opcode received from central device(This CVE is equivalent to Link Layer Length Overfow issue (CVE-2019-16336,CVE-2019-17519) and Silent Length Overflow issue(CVE-2019-17518) mentioned in sweyntooth paper)' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8053, APQ8076, AR9344, Bitra, Kamorta, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8917, MSM8937, MSM8940, MSM8953, Nicobar, QCA6174A, QCA9377, QCM2150, QCM6125, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SC8180X, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Over-read Issue in Bluetooth Firmware(Sweyntooth 6.1,6.4)",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-11-02T06:21:32",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3703",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8053, APQ8076, AR9344, Bitra, Kamorta, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8917, MSM8937, MSM8940, MSM8953, Nicobar, QCA6174A, QCA9377, QCM2150, QCM6125, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SC8180X, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Buffer over-read issue in Bluetooth peripheral firmware due to lack of check for invalid opcode and length of opcode received from central device(This CVE is equivalent to Link Layer Length Overfow issue (CVE-2019-16336,CVE-2019-17519) and Silent Length Overflow issue(CVE-2019-17518) mentioned in sweyntooth paper)' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8053, APQ8076, AR9344, Bitra, Kamorta, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8917, MSM8937, MSM8940, MSM8953, Nicobar, QCA6174A, QCA9377, QCM2150, QCM6125, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SC8180X, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Over-read Issue in Bluetooth Firmware(Sweyntooth 6.1,6.4)",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3703",
      datePublished: "2020-11-02T06:21:32",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:44:50.073Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2021-30327
Vulnerability from cvelistv5
Published
2022-06-14 10:10
Modified
2024-08-03 22:32
Severity ?
7.5 (High) - CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
Summary
Buffer overflow in sahara protocol while processing commands leads to overwrite of secure configuration data in Snapdragon Mobile, Snapdragon Compute, Snapdragon Auto, Snapdragon IOT, Snapdragon Connectivity, Snapdragon Voice & Music
References
https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Mobile, Snapdragon Compute, Snapdragon Auto, Snapdragon IOT, Snapdragon Connectivity, Snapdragon Voice & Music Version: APQ8097, APQ8098, IPQ6000, IPQ6005, IPQ6010, IPQ6018, IPQ6028, MDM9205, MSM8997, MSM8998, QCA6595, QCA6595AU, QCN7605, QCN7605W, QCN7606, QCN7606W, QCS401, QCS402, QCS403, QCS404, QCS405, QCS407, SA2145P, SA2150P, SA4150P, SA4155P, SA415M, SA4250P, SA515M, SA6115, SA6115P, SA6125, SA6125P, SA6145, SA6145P, SA615x, SA615xP, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SC7180P, SC8180X, SC8180XP, SDA658, SDA660, SDA670, SDA830, SDA845, SDM640, SDM658, SDM660, SDM670, SDM710, SDM712, SDM830, SDM845, SDM850, SDPX55M, SDX24, SDX24M, SDX55, SM4250, SM6125, SM6150, SM6150P, SM6250, SM6250P, SM7125, SM7150, SM7150P, SM7250, SM7250P, SM8150, SM8150P, SM8250, SXR2130, SXR2130P
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-03T22:32:40.865Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Mobile, Snapdragon Compute, Snapdragon Auto, Snapdragon IOT, Snapdragon Connectivity, Snapdragon Voice & Music",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8097, APQ8098, IPQ6000, IPQ6005, IPQ6010, IPQ6018, IPQ6028, MDM9205, MSM8997, MSM8998, QCA6595, QCA6595AU, QCN7605, QCN7605W, QCN7606, QCN7606W, QCS401, QCS402, QCS403, QCS404, QCS405, QCS407, SA2145P, SA2150P, SA4150P, SA4155P, SA415M, SA4250P, SA515M, SA6115, SA6115P, SA6125, SA6125P, SA6145, SA6145P, SA615x, SA615xP, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SC7180P, SC8180X, SC8180XP, SDA658, SDA660, SDA670, SDA830, SDA845, SDM640, SDM658, SDM660, SDM670, SDM710, SDM712, SDM830, SDM845, SDM850, SDPX55M, SDX24, SDX24M, SDX55, SM4250, SM6125, SM6150, SM6150P, SM6250, SM6250P, SM7125, SM7150, SM7150P, SM7250, SM7250P, SM8150, SM8150P, SM8250, SXR2130, SXR2130P",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Buffer overflow in sahara protocol while processing commands leads to overwrite of secure configuration data in Snapdragon Mobile, Snapdragon Compute, Snapdragon Auto, Snapdragon IOT, Snapdragon Connectivity, Snapdragon Voice & Music",
            },
         ],
         metrics: [
            {
               cvssV3_1: {
                  attackComplexity: "LOW",
                  attackVector: "PHYSICAL",
                  availabilityImpact: "LOW",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "CHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L",
                  version: "3.1",
               },
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer overflow in EDL Sahara protocol",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2022-06-14T10:10:50",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2021-30327",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Mobile, Snapdragon Compute, Snapdragon Auto, Snapdragon IOT, Snapdragon Connectivity, Snapdragon Voice & Music",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8097, APQ8098, IPQ6000, IPQ6005, IPQ6010, IPQ6018, IPQ6028, MDM9205, MSM8997, MSM8998, QCA6595, QCA6595AU, QCN7605, QCN7605W, QCN7606, QCN7606W, QCS401, QCS402, QCS403, QCS404, QCS405, QCS407, SA2145P, SA2150P, SA4150P, SA4155P, SA415M, SA4250P, SA515M, SA6115, SA6115P, SA6125, SA6125P, SA6145, SA6145P, SA615x, SA615xP, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SC7180P, SC8180X, SC8180XP, SDA658, SDA660, SDA670, SDA830, SDA845, SDM640, SDM658, SDM660, SDM670, SDM710, SDM712, SDM830, SDM845, SDM850, SDPX55M, SDX24, SDX24M, SDX55, SM4250, SM6125, SM6150, SM6150P, SM6250, SM6250P, SM7125, SM7150, SM7150P, SM7250, SM7250P, SM8150, SM8150P, SM8250, SXR2130, SXR2130P",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Buffer overflow in sahara protocol while processing commands leads to overwrite of secure configuration data in Snapdragon Mobile, Snapdragon Compute, Snapdragon Auto, Snapdragon IOT, Snapdragon Connectivity, Snapdragon Voice & Music",
                  },
               ],
            },
            impact: {
               cvss: {
                  baseScore: "7.5",
                  vectorString: "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L",
                  version: "3.1",
               },
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer overflow in EDL Sahara protocol",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2021-30327",
      datePublished: "2022-06-14T10:10:50",
      dateReserved: "2021-04-07T00:00:00",
      dateUpdated: "2024-08-03T22:32:40.865Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3636
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 07:37
Severity ?
Summary
u'Out of bound writes happen when accessing usage_table header entry beyond the memory allocated for the header' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:37:55.772Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Out of bound writes happen when accessing usage_table header entry beyond the memory allocated for the header' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Usage of Out-of-range Pointer Offset in Content Protection",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:41",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3636",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Out of bound writes happen when accessing usage_table header entry beyond the memory allocated for the header' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Usage of Out-of-range Pointer Offset in Content Protection",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3636",
      datePublished: "2020-09-08T09:31:41",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:37:55.772Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-10628
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 22:31
Severity ?
Summary
u'Memory can be potentially corrupted if random index is allowed to manipulate TLB entries in Kernel from user library' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8098, Bitra, MDM9205, MDM9650, MSM8998, Nicobar, QCA6390, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8098, Bitra, MDM9205, MDM9650, MSM8998, Nicobar, QCA6390, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T22:31:59.937Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8098, Bitra, MDM9205, MDM9650, MSM8998, Nicobar, QCA6390, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Memory can be potentially corrupted if random index is allowed to manipulate TLB entries in Kernel from user library' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8098, Bitra, MDM9205, MDM9650, MSM8998, Nicobar, QCA6390, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Validation of Array Index in Kernel",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:27",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-10628",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8098, Bitra, MDM9205, MDM9650, MSM8998, Nicobar, QCA6390, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Memory can be potentially corrupted if random index is allowed to manipulate TLB entries in Kernel from user library' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8098, Bitra, MDM9205, MDM9650, MSM8998, Nicobar, QCA6390, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Validation of Array Index in Kernel",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-10628",
      datePublished: "2020-09-08T09:31:27",
      dateReserved: "2019-03-29T00:00:00",
      dateUpdated: "2024-08-04T22:31:59.937Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14071
Vulnerability from cvelistv5
Published
2020-03-05 08:56
Modified
2024-08-05 00:12
Severity ?
Summary
Compromised reset handler may bypass access control due to AC config is being reset if debug path is enabled to collect secure or non-secure ram dumps in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8017, APQ8053, APQ8096, APQ8096AU, IPQ6018, MDM9205, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8017, APQ8053, APQ8096, APQ8096AU, IPQ6018, MDM9205, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:42.152Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8017, APQ8053, APQ8096, APQ8096AU, IPQ6018, MDM9205, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Compromised reset handler may bypass access control due to AC config is being reset if debug path is enabled to collect secure or non-secure ram dumps in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8017, APQ8053, APQ8096, APQ8096AU, IPQ6018, MDM9205, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Access Control Issue in TrustZone",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-03-05T08:56:16",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14071",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8017, APQ8053, APQ8096, APQ8096AU, IPQ6018, MDM9205, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Compromised reset handler may bypass access control due to AC config is being reset if debug path is enabled to collect secure or non-secure ram dumps in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8017, APQ8053, APQ8096, APQ8096AU, IPQ6018, MDM9205, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Access Control Issue in TrustZone",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14071",
      datePublished: "2020-03-05T08:56:16",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:42.152Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14083
Vulnerability from cvelistv5
Published
2020-03-05 08:56
Modified
2024-08-05 00:12
Severity ?
Summary
While parsing Service Descriptor Extended Attribute received as part of SDF frame, there is a possibility that incorrect length is specified in the attribute length field of extended SSI which can lead to integer underflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8053, APQ8096, APQ8098, IPQ6018, IPQ8074, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA8081, QCA9377, QCA9379, QCN7605, QCS404, QCS405, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8053, APQ8096, APQ8098, IPQ6018, IPQ8074, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA8081, QCA9377, QCA9379, QCN7605, QCS404, QCS405, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:42.163Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8053, APQ8096, APQ8098, IPQ6018, IPQ8074, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA8081, QCA9377, QCA9379, QCN7605, QCS404, QCS405, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "While parsing Service Descriptor Extended Attribute received as part of SDF frame, there is a possibility that incorrect length is specified in the attribute length field of extended SSI which can lead to integer underflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8053, APQ8096, APQ8098, IPQ6018, IPQ8074, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA8081, QCA9377, QCA9379, QCN7605, QCS404, QCS405, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-03-05T08:56:18",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14083",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8053, APQ8096, APQ8098, IPQ6018, IPQ8074, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA8081, QCA9377, QCA9379, QCN7605, QCS404, QCS405, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "While parsing Service Descriptor Extended Attribute received as part of SDF frame, there is a possibility that incorrect length is specified in the attribute length field of extended SSI which can lead to integer underflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8053, APQ8096, APQ8098, IPQ6018, IPQ8074, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA8081, QCA9377, QCA9379, QCN7605, QCS404, QCS405, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14083",
      datePublished: "2020-03-05T08:56:18",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:42.163Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14095
Vulnerability from cvelistv5
Published
2020-03-05 08:56
Modified
2024-08-05 00:12
Severity ?
Summary
Buffer overflow occurs while processing LMP packet in which name length parameter exceeds value specified in BT-specification in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9379, QCA9886, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9379, QCA9886, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:42.693Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9379, QCA9886, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Buffer overflow occurs while processing LMP packet in which name length parameter exceeds value specified in BT-specification in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9379, QCA9886, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of input in Bluetooth",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-03-05T08:56:19",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14095",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9379, QCA9886, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Buffer overflow occurs while processing LMP packet in which name length parameter exceeds value specified in BT-specification in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9379, QCA9886, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of input in Bluetooth",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14095",
      datePublished: "2020-03-05T08:56:19",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:42.693Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14124
Vulnerability from cvelistv5
Published
2020-07-30 11:40
Modified
2024-08-05 00:12
Severity ?
Summary
Memory failure in content protection module due to not having pointer within the scope in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:42.600Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Memory failure in content protection module due to not having pointer within the scope in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Access of Uninitialized Pointer in Content Protection",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-07-30T11:40:30",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14124",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Memory failure in content protection module due to not having pointer within the scope in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Access of Uninitialized Pointer in Content Protection",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14124",
      datePublished: "2020-07-30T11:40:30",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:42.600Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-11173
Vulnerability from cvelistv5
Published
2020-11-02 06:21
Modified
2024-08-04 11:28
Severity ?
Summary
u'Two threads running simultaneously from user space can lead to race condition in fastRPC driver' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8053, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8953, Nicobar, QCA6390, QCS404, QCS405, QCS610, Rennell, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA845, SDM429, SDM429W, SDM632, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: Agatti, APQ8053, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8953, Nicobar, QCA6390, QCS404, QCS405, QCS610, Rennell, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA845, SDM429, SDM429W, SDM632, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T11:28:12.906Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Agatti, APQ8053, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8953, Nicobar, QCA6390, QCS404, QCS405, QCS610, Rennell, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA845, SDM429, SDM429W, SDM632, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Two threads running simultaneously from user space can lead to race condition in fastRPC driver' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8053, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8953, Nicobar, QCA6390, QCS404, QCS405, QCS610, Rennell, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA845, SDM429, SDM429W, SDM632, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Use After Free Issue in DSP Services",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-11-02T06:21:26",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-11173",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Agatti, APQ8053, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8953, Nicobar, QCA6390, QCS404, QCS405, QCS610, Rennell, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA845, SDM429, SDM429W, SDM632, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Two threads running simultaneously from user space can lead to race condition in fastRPC driver' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8053, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8953, Nicobar, QCA6390, QCS404, QCS405, QCS610, Rennell, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA845, SDM429, SDM429W, SDM632, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Use After Free Issue in DSP Services",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-11173",
      datePublished: "2020-11-02T06:21:26",
      dateReserved: "2020-03-31T00:00:00",
      dateUpdated: "2024-08-04T11:28:12.906Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-11125
Vulnerability from cvelistv5
Published
2020-11-02 06:21
Modified
2024-08-04 11:21
Severity ?
Summary
u'Out of bound access can happen in MHI command process due to lack of check of channel id value received from MHI devices' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9150, MDM9607, MDM9650, MSM8905, MSM8917, MSM8953, Nicobar, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM660, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9150, MDM9607, MDM9650, MSM8905, MSM8917, MSM8953, Nicobar, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM660, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T11:21:14.620Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9150, MDM9607, MDM9650, MSM8905, MSM8917, MSM8953, Nicobar, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM660, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Out of bound access can happen in MHI command process due to lack of check of channel id value received from MHI devices' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9150, MDM9607, MDM9650, MSM8905, MSM8917, MSM8953, Nicobar, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM660, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in Hardware Engines",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-11-02T06:21:21",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-11125",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9150, MDM9607, MDM9650, MSM8905, MSM8917, MSM8953, Nicobar, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM660, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Out of bound access can happen in MHI command process due to lack of check of channel id value received from MHI devices' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9150, MDM9607, MDM9650, MSM8905, MSM8917, MSM8953, Nicobar, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM660, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in Hardware Engines",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-11125",
      datePublished: "2020-11-02T06:21:21",
      dateReserved: "2020-03-31T00:00:00",
      dateUpdated: "2024-08-04T11:21:14.620Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14028
Vulnerability from cvelistv5
Published
2020-03-05 08:56
Modified
2024-08-05 00:05
Severity ?
Summary
Buffer overwrite during memcpy due to lack of check on SSID length validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.155Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Buffer overwrite during memcpy due to lack of check on SSID length validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-03-05T08:56:11",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14028",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Buffer overwrite during memcpy due to lack of check on SSID length validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14028",
      datePublished: "2020-03-05T08:56:12",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.155Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3640
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 07:37
Severity ?
Summary
u'Resizing the usage table header before passing all the checks leads to the function exiting with a usage table in invalid state when a HLOS adversary calls the function with wrong input' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Bitra, Kamorta, QCS404, QCS610, Rennell, Saipan, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: Bitra, Kamorta, QCS404, QCS610, Rennell, Saipan, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:37:55.771Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Bitra, Kamorta, QCS404, QCS610, Rennell, Saipan, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Resizing the usage table header before passing all the checks leads to the function exiting with a usage table in invalid state when a HLOS adversary calls the function with wrong input' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Bitra, Kamorta, QCS404, QCS610, Rennell, Saipan, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Incorrect Calculation of Buffer Size in Content Protection",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:42",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3640",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Bitra, Kamorta, QCS404, QCS610, Rennell, Saipan, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Resizing the usage table header before passing all the checks leads to the function exiting with a usage table in invalid state when a HLOS adversary calls the function with wrong input' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Bitra, Kamorta, QCS404, QCS610, Rennell, Saipan, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Incorrect Calculation of Buffer Size in Content Protection",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3640",
      datePublished: "2020-09-08T09:31:42",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:37:55.771Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14054
Vulnerability from cvelistv5
Published
2020-06-02 15:05
Modified
2024-08-05 00:05
Severity ?
Summary
Improper permissions in XBL_SEC region enable user to update XBL_SEC code and data and divert the RAM dump path to normal cold boot path in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.183Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Improper permissions in XBL_SEC region enable user to update XBL_SEC code and data and divert the RAM dump path to normal cold boot path in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Access Control Issue in QTEE",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-06-02T15:05:41",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14054",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Improper permissions in XBL_SEC region enable user to update XBL_SEC code and data and divert the RAM dump path to normal cold boot path in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Access Control Issue in QTEE",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14054",
      datePublished: "2020-06-02T15:05:41",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.183Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14111
Vulnerability from cvelistv5
Published
2020-04-16 10:46
Modified
2024-08-05 00:12
Severity ?
Summary
Possible buffer overflow while handling NAN reception of NMF in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, Rennell, SC7180, SC8180X, SM6150, SM7150, SM8150, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: IPQ6018, IPQ8074, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, Rennell, SC7180, SC8180X, SM6150, SM7150, SM8150, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:42.515Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "IPQ6018, IPQ8074, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, Rennell, SC7180, SC8180X, SM6150, SM7150, SM8150, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Possible buffer overflow while handling NAN reception of NMF in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, Rennell, SC7180, SC8180X, SM6150, SM7150, SM8150, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Possible Buffer Overflow Issue in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-04-16T10:46:15",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14111",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "IPQ6018, IPQ8074, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, Rennell, SC7180, SC8180X, SM6150, SM7150, SM8150, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Possible buffer overflow while handling NAN reception of NMF in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, Rennell, SC7180, SC8180X, SM6150, SM7150, SM8150, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Possible Buffer Overflow Issue in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14111",
      datePublished: "2020-04-16T10:46:15",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:42.515Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14094
Vulnerability from cvelistv5
Published
2020-06-22 07:10
Modified
2024-08-05 00:12
Severity ?
Summary
Integer overflow in diag command handler when user inputs a large value for number of tasks field in the request packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:43.295Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Integer overflow in diag command handler when user inputs a large value for number of tasks field in the request packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Over read Issue in Diag Services",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-06-22T07:10:38",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14094",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Integer overflow in diag command handler when user inputs a large value for number of tasks field in the request packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Over read Issue in Diag Services",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14094",
      datePublished: "2020-06-22T07:10:38",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:43.295Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14089
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-05 00:12
Severity ?
Summary
u'Keymaster attestation key and device IDs provisioning which is a one time process is incorrectly allowed to be re-provisioned after a user data erase or a factory reset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, Nicobar, QCS404, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: Kamorta, Nicobar, QCS404, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:42.588Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Kamorta, Nicobar, QCS404, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Keymaster attestation key and device IDs provisioning which is a one time process is incorrectly allowed to be re-provisioned after a user data erase or a factory reset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, Nicobar, QCS404, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Key Management Errors in HLOS",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:32",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14089",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Kamorta, Nicobar, QCS404, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Keymaster attestation key and device IDs provisioning which is a one time process is incorrectly allowed to be re-provisioned after a user data erase or a factory reset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, Nicobar, QCS404, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Key Management Errors in HLOS",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14089",
      datePublished: "2020-09-08T09:31:32",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:42.588Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3684
Vulnerability from cvelistv5
Published
2020-11-02 06:21
Modified
2024-08-04 07:44
Severity ?
Summary
u'QSEE reads the access permission policy for the SMEM TOC partition from the SMEM TOC contents populated by XBL Loader and applies them without validation' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8098, Bitra, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8998, Nicobar, QCA6390, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: Agatti, APQ8009, APQ8098, Bitra, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8998, Nicobar, QCA6390, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:44:50.287Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Agatti, APQ8009, APQ8098, Bitra, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8998, Nicobar, QCA6390, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'QSEE reads the access permission policy for the SMEM TOC partition from the SMEM TOC contents populated by XBL Loader and applies them without validation' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8098, Bitra, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8998, Nicobar, QCA6390, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Permissions, Privileges and Access Control issues in Qualcomm IPC",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-11-02T06:21:29",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3684",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Agatti, APQ8009, APQ8098, Bitra, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8998, Nicobar, QCA6390, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'QSEE reads the access permission policy for the SMEM TOC partition from the SMEM TOC contents populated by XBL Loader and applies them without validation' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8098, Bitra, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8998, Nicobar, QCA6390, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Permissions, Privileges and Access Control issues in Qualcomm IPC",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3684",
      datePublished: "2020-11-02T06:21:30",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:44:50.287Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-2319
Vulnerability from cvelistv5
Published
2019-12-12 08:30
Modified
2024-08-04 18:49
Severity ?
Summary
HLOS could corrupt CPZ page table memory for S1 managed VMs in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T18:49:47.892Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "HLOS could corrupt CPZ page table memory for S1 managed VMs in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Access Control During Memory Assignment",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-12-12T08:30:43",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-2319",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "HLOS could corrupt CPZ page table memory for S1 managed VMs in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Access Control During Memory Assignment",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-2319",
      datePublished: "2019-12-12T08:30:43",
      dateReserved: "2018-12-10T00:00:00",
      dateUpdated: "2024-08-04T18:49:47.892Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-2346
Vulnerability from cvelistv5
Published
2019-07-25 16:33
Modified
2024-08-04 18:49
Severity ?
Summary
Firmware is getting into loop of overwriting memory when scan command is given from host because of improper validation. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, QCA8081, QCS404, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660
References
https://www.qualcomm.com/company/product-security/bulletinsx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: IPQ8074, QCA8081, QCS404, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T18:49:47.489Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "IPQ8074, QCA8081, QCS404, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Firmware is getting into loop of overwriting memory when scan command is given from host because of improper validation. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, QCA8081, QCS404, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Validation of Array Index in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-07-25T16:33:19",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-2346",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "IPQ8074, QCA8081, QCS404, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Firmware is getting into loop of overwriting memory when scan command is given from host because of improper validation. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, QCA8081, QCS404, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Validation of Array Index in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-2346",
      datePublished: "2019-07-25T16:33:19",
      dateReserved: "2018-12-10T00:00:00",
      dateUpdated: "2024-08-04T18:49:47.489Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3678
Vulnerability from cvelistv5
Published
2020-11-02 06:21
Modified
2024-08-04 07:44
Severity ?
Summary
u'A buffer overflow could occur if the API is improperly used due to UIE init does not contain a buffer size a param' in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Agatti, Kamorta, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: Agatti, Kamorta, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:44:50.131Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Agatti, Kamorta, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'A buffer overflow could occur if the API is improperly used due to UIE init does not contain a buffer size a param' in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Agatti, Kamorta, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Copy Without Checking Size of Input in Core",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-11-02T06:21:29",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3678",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Agatti, Kamorta, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'A buffer overflow could occur if the API is improperly used due to UIE init does not contain a buffer size a param' in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Agatti, Kamorta, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Copy Without Checking Size of Input in Core",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3678",
      datePublished: "2020-11-02T06:21:29",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:44:50.131Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3704
Vulnerability from cvelistv5
Published
2020-11-02 06:21
Modified
2024-08-04 07:44
Severity ?
Summary
u'While processing invalid connection request PDU which is nonstandard (interval or timeout is 0) from central device may lead peripheral system enter into dead lock state.(This CVE is equivalent to InvalidConnectionRequest(CVE-2019-19193) mentioned in sweyntooth paper)' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8017, APQ8053, AR9344, Bitra, IPQ5018, Kamorta, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9886, QCM6125, QCN7605, QCS404, QCS405, QCS605, QCS610, QRB5165, Rennell, SA415M, SA515M, Saipan, SC7180, SC8180X, SDA845, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: Agatti, APQ8009, APQ8017, APQ8053, AR9344, Bitra, IPQ5018, Kamorta, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9886, QCM6125, QCN7605, QCS404, QCS405, QCS605, QCS610, QRB5165, Rennell, SA415M, SA515M, Saipan, SC7180, SC8180X, SDA845, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:44:50.142Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Agatti, APQ8009, APQ8017, APQ8053, AR9344, Bitra, IPQ5018, Kamorta, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9886, QCM6125, QCN7605, QCS404, QCS405, QCS605, QCS610, QRB5165, Rennell, SA415M, SA515M, Saipan, SC7180, SC8180X, SDA845, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'While processing invalid connection request PDU which is nonstandard (interval or timeout is 0) from central device may lead peripheral system enter into dead lock state.(This CVE is equivalent to InvalidConnectionRequest(CVE-2019-19193) mentioned in sweyntooth paper)' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8017, APQ8053, AR9344, Bitra, IPQ5018, Kamorta, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9886, QCM6125, QCN7605, QCS404, QCS405, QCS605, QCS610, QRB5165, Rennell, SA415M, SA515M, Saipan, SC7180, SC8180X, SDA845, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Input Validation in Bluetooth Peripheral Firmware(Sweyntooth 6.5)",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-11-02T06:21:33",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3704",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Agatti, APQ8009, APQ8017, APQ8053, AR9344, Bitra, IPQ5018, Kamorta, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9886, QCM6125, QCN7605, QCS404, QCS405, QCS605, QCS610, QRB5165, Rennell, SA415M, SA515M, Saipan, SC7180, SC8180X, SDA845, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'While processing invalid connection request PDU which is nonstandard (interval or timeout is 0) from central device may lead peripheral system enter into dead lock state.(This CVE is equivalent to InvalidConnectionRequest(CVE-2019-19193) mentioned in sweyntooth paper)' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8017, APQ8053, AR9344, Bitra, IPQ5018, Kamorta, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9886, QCM6125, QCN7605, QCS404, QCS405, QCS605, QCS610, QRB5165, Rennell, SA415M, SA515M, Saipan, SC7180, SC8180X, SDA845, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Input Validation in Bluetooth Peripheral Firmware(Sweyntooth 6.5)",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3704",
      datePublished: "2020-11-02T06:21:33",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:44:50.142Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14074
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-05 00:12
Severity ?
Summary
u'Heap overflow in diag command handler due to lack of check of packet length received from user' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:42.155Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Heap overflow in diag command handler due to lack of check of packet length received from user' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Integer Overflow or Wraparound Issue in Diag Services",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:32",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14074",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Heap overflow in diag command handler due to lack of check of packet length received from user' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Integer Overflow or Wraparound Issue in Diag Services",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14074",
      datePublished: "2020-09-08T09:31:32",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:42.155Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14066
Vulnerability from cvelistv5
Published
2020-06-02 15:05
Modified
2024-08-05 00:05
Severity ?
Summary
Integer overflow in calculating estimated output buffer size when getting a list of installed Feature IDs, Serial Numbers or checking Feature ID status in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, Rennell, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, Rennell, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.207Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, Rennell, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Integer overflow in calculating estimated output buffer size when getting a list of installed Feature IDs, Serial Numbers or checking Feature ID status in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, Rennell, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Integer Overflow Issue in Feature License Queries",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-06-02T15:05:42",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14066",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, Rennell, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Integer overflow in calculating estimated output buffer size when getting a list of installed Feature IDs, Serial Numbers or checking Feature ID status in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, Rennell, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Integer Overflow Issue in Feature License Queries",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14066",
      datePublished: "2020-06-02T15:05:42",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.207Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3622
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 07:37
Severity ?
Summary
u'Channel name string which has been read from shared memory is potentially subjected to string manipulations but not validated for NULL termination can results into memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:37:55.751Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Channel name string which has been read from shared memory is potentially subjected to string manipulations but not validated for NULL termination can results into memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Input Validation issue in Qualcomm IPC",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:40",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3622",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Channel name string which has been read from shared memory is potentially subjected to string manipulations but not validated for NULL termination can results into memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Input Validation issue in Qualcomm IPC",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3622",
      datePublished: "2020-09-08T09:31:40",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:37:55.751Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-2321
Vulnerability from cvelistv5
Published
2019-12-12 08:30
Modified
2024-08-04 18:49
Severity ?
Summary
Incorrect length used while validating the qsee log buffer sent from HLOS which could then lead to remap conflict in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ4019, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ4019, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T18:49:46.410Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ4019, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Incorrect length used while validating the qsee log buffer sent from HLOS which could then lead to remap conflict in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ4019, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Overflow Issue in QTEE Logging Mechanism",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-12-12T08:30:43",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-2321",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ4019, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Incorrect length used while validating the qsee log buffer sent from HLOS which could then lead to remap conflict in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ4019, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Overflow Issue in QTEE Logging Mechanism",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-2321",
      datePublished: "2019-12-12T08:30:43",
      dateReserved: "2018-12-10T00:00:00",
      dateUpdated: "2024-08-04T18:49:46.410Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3638
Vulnerability from cvelistv5
Published
2020-11-02 06:21
Modified
2024-08-04 07:37
Severity ?
Summary
u'An Unaligned address or size can propagate to the database due to improper page permissions and can lead to improper access control' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Agatti, Bitra, Kamorta, QCA6390, QCS404, QCS610, Rennell, SA515M, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: Agatti, Bitra, Kamorta, QCA6390, QCS404, QCS610, Rennell, SA515M, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:37:55.799Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Agatti, Bitra, Kamorta, QCA6390, QCS404, QCS610, Rennell, SA515M, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'An Unaligned address or size can propagate to the database due to improper page permissions and can lead to improper access control' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Agatti, Bitra, Kamorta, QCA6390, QCS404, QCS610, Rennell, SA515M, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Access Control Issue in Core",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-11-02T06:21:27",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3638",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Agatti, Bitra, Kamorta, QCA6390, QCS404, QCS610, Rennell, SA515M, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'An Unaligned address or size can propagate to the database due to improper page permissions and can lead to improper access control' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Agatti, Bitra, Kamorta, QCA6390, QCS404, QCS610, Rennell, SA515M, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Access Control Issue in Core",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3638",
      datePublished: "2020-11-02T06:21:27",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:37:55.799Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14000
Vulnerability from cvelistv5
Published
2020-03-05 08:56
Modified
2024-08-05 00:05
Severity ?
Summary
Lack of check that the RX FIFO write index that is read from shared RAM is less than the FIFO size results into memory corruption and potential information leakage in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.113Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Lack of check that the RX FIFO write index that is read from shared RAM is less than the FIFO size results into memory corruption and potential information leakage in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Information Exposure Issue in Qualcomm IPC",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-03-05T08:56:10",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14000",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Lack of check that the RX FIFO write index that is read from shared RAM is less than the FIFO size results into memory corruption and potential information leakage in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Information Exposure Issue in Qualcomm IPC",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14000",
      datePublished: "2020-03-05T08:56:10",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.113Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3675
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 07:44
Severity ?
Summary
u'Potential integer underflow while parsing Service Info and IPv6 link-local TLVs that comes as part of NDPE attribute' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ5018, IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCN7605, QCS404, QCS405, Rennell, SA415M, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: IPQ5018, IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCN7605, QCS404, QCS405, Rennell, SA415M, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:44:49.927Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "IPQ5018, IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCN7605, QCS404, QCS405, Rennell, SA415M, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Potential integer underflow while parsing Service Info and IPv6 link-local TLVs that comes as part of NDPE attribute' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ5018, IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCN7605, QCS404, QCS405, Rennell, SA415M, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Over-read Issue in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:46",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3675",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "IPQ5018, IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCN7605, QCS404, QCS405, Rennell, SA415M, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Potential integer underflow while parsing Service Info and IPv6 link-local TLVs that comes as part of NDPE attribute' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ5018, IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCN7605, QCS404, QCS405, Rennell, SA415M, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Over-read Issue in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3675",
      datePublished: "2020-09-08T09:31:46",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:44:49.927Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14119
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-05 00:12
Severity ?
Summary
u'While processing SMCInvoke asynchronous message header, message count is modified leading to a TOCTOU race condition and lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: IPQ6018, Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:42.511Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "IPQ6018, Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'While processing SMCInvoke asynchronous message header, message count is modified leading to a TOCTOU race condition and lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Time of Check Time of Use Race Condition in QTEE",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:33",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14119",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "IPQ6018, Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'While processing SMCInvoke asynchronous message header, message count is modified leading to a TOCTOU race condition and lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Time of Check Time of Use Race Condition in QTEE",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14119",
      datePublished: "2020-09-08T09:31:34",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:42.511Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14056
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-05 00:05
Severity ?
Summary
u'Possible integer overflow in API due to lack of check on large oid range count in cert extension field' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.270Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Possible integer overflow in API due to lack of check on large oid range count in cert extension field' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Integer Overflow or Wraparound Issue in TrustZone",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:31",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14056",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Possible integer overflow in API due to lack of check on large oid range count in cert extension field' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Integer Overflow or Wraparound Issue in TrustZone",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14056",
      datePublished: "2020-09-08T09:31:31",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.270Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-2336
Vulnerability from cvelistv5
Published
2019-11-21 14:38
Modified
2024-08-04 18:49
Severity ?
Summary
Subsequent use of the CBO listener may result in further memory corruption due to use after free issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, SDX55, SM6150, SM7150, SM8150, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: MDM9205, QCS404, SDX55, SM6150, SM7150, SM8150, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T18:49:47.721Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "MDM9205, QCS404, SDX55, SM6150, SM7150, SM8150, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Subsequent use of the CBO listener may result in further memory corruption due to use after free issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, SDX55, SM6150, SM7150, SM8150, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Use After Free Issue in QTEE",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-11-21T14:38:22",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-2336",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "MDM9205, QCS404, SDX55, SM6150, SM7150, SM8150, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Subsequent use of the CBO listener may result in further memory corruption due to use after free issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, SDX55, SM6150, SM7150, SM8150, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Use After Free Issue in QTEE",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-2336",
      datePublished: "2019-11-21T14:38:22",
      dateReserved: "2018-12-10T00:00:00",
      dateUpdated: "2024-08-04T18:49:47.721Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14042
Vulnerability from cvelistv5
Published
2020-06-02 15:05
Modified
2024-08-05 00:05
Severity ?
Summary
Out of bound read in in fingerprint application due to requested data assigned to a local buffer without length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9205, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: Kamorta, MDM9205, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.209Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Kamorta, MDM9205, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Out of bound read in in fingerprint application due to requested data assigned to a local buffer without length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9205, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Buffer Over-read Issue in Biometrics",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-06-02T15:05:40",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14042",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Kamorta, MDM9205, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Out of bound read in in fingerprint application due to requested data assigned to a local buffer without length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9205, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Buffer Over-read Issue in Biometrics",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14042",
      datePublished: "2020-06-02T15:05:40",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.209Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14067
Vulnerability from cvelistv5
Published
2020-06-02 15:05
Modified
2024-08-05 00:05
Severity ?
Summary
Using non-time-constant functions like memcmp to compare sensitive data can lead to information leakage through timing side channel issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.198Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Using non-time-constant functions like memcmp to compare sensitive data can lead to information leakage through timing side channel issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Information Exposure in QTEE",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-06-02T15:05:42",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14067",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Using non-time-constant functions like memcmp to compare sensitive data can lead to information leakage through timing side channel issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Information Exposure in QTEE",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14067",
      datePublished: "2020-06-02T15:05:42",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.198Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-10562
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 22:24
Severity ?
Summary
u'Improper authentication and signature verification of debug polices in secure boot loader will allow unverified debug policies to be loaded into secure memory and leads to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ6018, Kamorta, MSM8998, Nicobar, QCS404, QCS605, QCS610, Rennell, SA415M, SA6155P, SC7180, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking Version: IPQ6018, Kamorta, MSM8998, Nicobar, QCS404, QCS605, QCS610, Rennell, SA415M, SA6155P, SC7180, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T22:24:18.735Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "IPQ6018, Kamorta, MSM8998, Nicobar, QCS404, QCS605, QCS610, Rennell, SA415M, SA6155P, SC7180, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Improper authentication and signature verification of debug polices in secure boot loader will allow unverified debug policies to be loaded into secure memory and leads to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ6018, Kamorta, MSM8998, Nicobar, QCS404, QCS605, QCS610, Rennell, SA415M, SA6155P, SC7180, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Authentication Issue in QTEE",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:25",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-10562",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "IPQ6018, Kamorta, MSM8998, Nicobar, QCS404, QCS605, QCS610, Rennell, SA415M, SA6155P, SC7180, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Improper authentication and signature verification of debug polices in secure boot loader will allow unverified debug policies to be loaded into secure memory and leads to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ6018, Kamorta, MSM8998, Nicobar, QCS404, QCS605, QCS610, Rennell, SA415M, SA6155P, SC7180, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Authentication Issue in QTEE",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-10562",
      datePublished: "2020-09-08T09:31:25",
      dateReserved: "2019-03-29T00:00:00",
      dateUpdated: "2024-08-04T22:24:18.735Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3644
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 07:37
Severity ?
Summary
u'Information disclosure issue occurs as in current logic Secure Touch session is released without terminating display session' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:37:55.806Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Information disclosure issue occurs as in current logic Secure Touch session is released without terminating display session' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Information Exposure in Content Protection",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:42",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3644",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Information disclosure issue occurs as in current logic Secure Touch session is released without terminating display session' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Information Exposure in Content Protection",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3644",
      datePublished: "2020-09-08T09:31:43",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:37:55.806Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3690
Vulnerability from cvelistv5
Published
2020-11-02 06:21
Modified
2024-08-04 07:44
Severity ?
Summary
u'Due to an incorrect SMMU configuration, the modem crypto engine can potentially compromise the hypervisor' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, Bitra, Kamorta, Nicobar, QCA6390, QCS404, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: Agatti, Bitra, Kamorta, Nicobar, QCA6390, QCS404, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:44:49.961Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Agatti, Bitra, Kamorta, Nicobar, QCA6390, QCS404, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Due to an incorrect SMMU configuration, the modem crypto engine can potentially compromise the hypervisor' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, Bitra, Kamorta, Nicobar, QCA6390, QCS404, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Access Control in Core",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-11-02T06:21:30",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3690",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Agatti, Bitra, Kamorta, Nicobar, QCA6390, QCS404, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Due to an incorrect SMMU configuration, the modem crypto engine can potentially compromise the hypervisor' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, Bitra, Kamorta, Nicobar, QCA6390, QCS404, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Access Control in Core",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3690",
      datePublished: "2020-11-02T06:21:30",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:44:49.961Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3620
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 07:37
Severity ?
Summary
u'Lack of check of integer overflow while doing a round up operation for data read from shared memory for G-link SMEM transport can lead to corruption and potential information leak' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:37:55.732Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Lack of check of integer overflow while doing a round up operation for data read from shared memory for G-link SMEM transport can lead to corruption and potential information leak' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Integer Overflow or Wraparound in Qualcomm IPC",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:39",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3620",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Lack of check of integer overflow while doing a round up operation for data read from shared memory for G-link SMEM transport can lead to corruption and potential information leak' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Integer Overflow or Wraparound in Qualcomm IPC",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3620",
      datePublished: "2020-09-08T09:31:39",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:37:55.732Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-11174
Vulnerability from cvelistv5
Published
2020-11-02 06:21
Modified
2024-08-04 11:28
Severity ?
Summary
u'Array index underflow issue in adsp driver due to improper check of channel id before used as array index.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8953, MSM8996AU, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: Agatti, APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8953, MSM8996AU, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T11:28:12.900Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "Agatti, APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8953, MSM8996AU, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Array index underflow issue in adsp driver due to improper check of channel id before used as array index.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8953, MSM8996AU, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Validation of Array Index in DSP Services",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-11-02T06:21:26",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-11174",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Agatti, APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8953, MSM8996AU, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Array index underflow issue in adsp driver due to improper check of channel id before used as array index.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8953, MSM8996AU, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Validation of Array Index in DSP Services",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-11174",
      datePublished: "2020-11-02T06:21:26",
      dateReserved: "2020-03-31T00:00:00",
      dateUpdated: "2024-08-04T11:28:12.900Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-2295
Vulnerability from cvelistv5
Published
2019-11-21 14:38
Modified
2024-08-04 18:42
Severity ?
Summary
Information disclosure due to lack of address range check done on the SysDBG buffers in SDI code. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, MDM9205, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, Snapdragon_High_Med_2016, SXR1130
References
https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, MDM9205, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, Snapdragon_High_Med_2016, SXR1130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T18:42:51.159Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, MDM9205, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, Snapdragon_High_Med_2016, SXR1130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Information disclosure due to lack of address range check done on the SysDBG buffers in SDI code. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, MDM9205, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, Snapdragon_High_Med_2016, SXR1130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Untrusted Pointer Dereference in System Debug",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2019-11-21T14:38:22",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-2295",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, MDM9205, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, Snapdragon_High_Med_2016, SXR1130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Information disclosure due to lack of address range check done on the SysDBG buffers in SDI code. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, MDM9205, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, Snapdragon_High_Med_2016, SXR1130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Untrusted Pointer Dereference in System Debug",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-2295",
      datePublished: "2019-11-21T14:38:22",
      dateReserved: "2018-12-10T00:00:00",
      dateUpdated: "2024-08-04T18:42:51.159Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14115
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-05 00:12
Severity ?
Summary
u'Information disclosure issue occurs as in current logic as secure touch is released without clearing the display session which can result in user reading the secure input while touch is in non-secure domain as secure display is active' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:42.470Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Information disclosure issue occurs as in current logic as secure touch is released without clearing the display session which can result in user reading the secure input while touch is in non-secure domain as secure display is active' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Information Exposure in Content Protection",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:33",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14115",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Information disclosure issue occurs as in current logic as secure touch is released without clearing the display session which can result in user reading the secure input while touch is in non-secure domain as secure display is active' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Information Exposure in Content Protection",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14115",
      datePublished: "2020-09-08T09:31:33",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:42.470Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-3621
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-04 07:37
Severity ?
Summary
u'Lack of check to ensure that the TX read index & RX write index that are read from shared memory are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T07:37:55.644Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Lack of check to ensure that the TX read index & RX write index that are read from shared memory are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Improper Validation of Array Index in Qualcomm IPC",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:39",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2020-3621",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Lack of check to ensure that the TX read index & RX write index that are read from shared memory are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Improper Validation of Array Index in Qualcomm IPC",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2020-3621",
      datePublished: "2020-09-08T09:31:39",
      dateReserved: "2019-12-17T00:00:00",
      dateUpdated: "2024-08-04T07:37:55.644Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-14114
Vulnerability from cvelistv5
Published
2020-04-16 10:46
Modified
2024-08-05 00:12
Severity ?
Summary
Buffer overflow in WLAN firmware while parsing GTK IE containing GTK key having length more than the buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:12:43.249Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Buffer overflow in WLAN firmware while parsing GTK IE containing GTK key having length more than the buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Integer Overflow to Buffer Overflow Issue in WLAN",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-04-16T10:46:16",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-14114",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Buffer overflow in WLAN firmware while parsing GTK IE containing GTK key having length more than the buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Integer Overflow to Buffer Overflow Issue in WLAN",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-14114",
      datePublished: "2020-04-16T10:46:16",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:12:43.249Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2019-13999
Vulnerability from cvelistv5
Published
2020-09-08 09:31
Modified
2024-08-05 00:05
Severity ?
Summary
u'Lack of check for integer overflow for round up and addition operations result into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinx_refsource_CONFIRM
Impacted products
Vendor Product Version
Qualcomm, Inc. Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking Version: APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
 Create a notification for this product.
Show details on NVD website

To clipboard 

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-05T00:05:44.146Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
               vendor: "Qualcomm, Inc.",
               versions: [
                  {
                     status: "affected",
                     version: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "u'Lack of check for integer overflow for round up and addition operations result into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Integer Overflow or Wraparound in Qualcomm IPC",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-08T09:31:29",
            orgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
            shortName: "qualcomm",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "product-security@qualcomm.com",
               ID: "CVE-2019-13999",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Qualcomm, Inc.",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "u'Lack of check for integer overflow for round up and addition operations result into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Integer Overflow or Wraparound in Qualcomm IPC",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                     refsource: "CONFIRM",
                     url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f",
      assignerShortName: "qualcomm",
      cveId: "CVE-2019-13999",
      datePublished: "2020-09-08T09:31:29",
      dateReserved: "2019-07-19T00:00:00",
      dateUpdated: "2024-08-05T00:05:44.146Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 05:31
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
u'Buffer overflow while parsing PMF enabled MCBC frames due to frame length being lesser than what is expected while parsing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link, Vendor Advisory
Impacted products
Vendor Product Version
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Buffer overflow while parsing PMF enabled MCBC frames due to frame length being lesser than what is expected while parsing' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130",
      },
      {
         lang: "es",
         value: "Un Desbordamiento del Búfer mientras se analiza trama MCBC habilitadas de PMF debido a que la longitud de la trama es menor de lo esperado mientras se analiza en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130.",
      },
   ],
   id: "CVE-2020-3668",
   lastModified: "2024-11-21T05:31:32.323",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:16.153",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-04-16 11:15
Modified
2024-11-21 04:26
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Buffer overflow can occur in In WLAN firmware while unwraping data using CCMP cipher suite during parsing of EAPOL handshake frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8064_firmware -
qualcomm apq8064 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9207c_firmware -
qualcomm mdm9207c -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca4531_firmware -
qualcomm qca4531 -
qualcomm qca6174a_firmware -
qualcomm qca6174a -
qualcomm qca6564_firmware -
qualcomm qca6564 -
qualcomm qca6574_firmware -
qualcomm qca6574 -
qualcomm qca6574au_firmware -
qualcomm qca6574au -
qualcomm qca6584_firmware -
qualcomm qca6584 -
qualcomm qca6584au_firmware -
qualcomm qca6584au -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qca9377_firmware -
qualcomm qca9377 -
qualcomm qca9379_firmware -
qualcomm qca9379 -
qualcomm qca9886_firmware -
qualcomm qca9886 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8064_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "349F2550-D3FE-4C31-A4F1-E1E44D6054AC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8064:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6C7BF553-4EAC-455D-9743-9C359CAA65E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9207c_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3CFA66A-CD2E-4670-A137-65E2C94C1A11",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9207c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE52FE99-DF0D-4C57-BB9C-0B853D1AF58B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca4531_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A13DB5D-38AC-4E50-A279-130AF24256E0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca4531:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "90A67611-CA55-4039-B4B5-AB87CD6CEA17",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4FF653D0-15CF-4A10-8D8E-BE56F4DAB890",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C31FA74C-6659-4457-BC32-257624F43C66",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6564_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00FE294D-4BE0-4436-9273-507E760884EC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6564:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "424CB795-58E5-43A4-A2EC-C563D93C5E72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9B828AC8-4A01-4537-B2BD-8180C99F5C32",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "66C16E1E-9D4A-4F20-B697-833FDCCA86FB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D527E2B1-2A46-4FBA-9F7A-F5543677C8FB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8374DDB3-D484-4141-AE0C-42333D2721F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6584_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CFB656-804A-453C-A39B-1B08C0A16BB9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6584:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7F0C9ED5-27E3-48EC-9A05-862715EE2034",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C3DDA896-576C-44B8-85B6-F71F473F776B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6584au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "51A87BDA-5B24-4212-BAB3-D2BBB2F4162E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C4D2B46E-3996-42FD-B932-09E92C02EC8A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "98E58C63-F253-4DCC-8A14-48FEB64B4C3D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9379_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "25565FDA-651D-4A05-8B1E-2188B6921253",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9379:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B8D49750-BBEA-4A3D-9898-28B7A50A7F42",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9886_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "311229F9-4A32-462D-AE8D-E5E2B2C416CE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9886:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A523C3F-FB62-4728-8173-4C117C28AC5A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Buffer overflow can occur in In WLAN firmware while unwraping data using CCMP cipher suite during parsing of EAPOL handshake frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un desbordamiento del búfer puede ocurrir en el firmware de la WLAN mientras se desempaquetan los datos utilizando el conjunto de cifrado CCMP durante el análisis de la trama del protocolo de enlace EAPOL en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-14113",
   lastModified: "2024-11-21T04:26:06.723",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-04-16T11:15:15.183",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-119",
            },
            {
               lang: "en",
               value: "CWE-190",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:19
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Possibility of integer overflow in keymaster 4 while allocating memory due to multiplication of large numcerts value and size of keymaster bob which can lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8909w_firmware -
qualcomm msm8909w -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FE28A59C-7AA6-4B85-84E8-07852B96108E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5DEE828B-09A7-4AC1-8134-491A7C87C118",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Possibility of integer overflow in keymaster 4 while allocating memory due to multiplication of large numcerts value and size of keymaster bob which can lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una posibilidad de desbordamiento de enteros en keymaster 4, mientras se asignaba la memoria debido a una multiplicación de un gran valor numcerts y el tamaño de keymaster bob que puede conllevar a una corrupción de la memoria en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-10615",
   lastModified: "2024-11-21T04:19:35.610",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:12.217",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-190",
            },
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-11-02 07:15
Modified
2024-11-21 05:31
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Due to an incorrect SMMU configuration, the modem crypto engine can potentially compromise the hypervisor' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, Bitra, Kamorta, Nicobar, QCA6390, QCS404, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm agatti_firmware -
qualcomm agatti -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sa8155p_firmware -
qualcomm sa8155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:agatti_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "39E6366C-4356-4689-B1B6-762861CB1813",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:agatti:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37440A79-2D29-4747-981B-7D2C526FFBC7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C8648B38-2597-401A-8F53-D582FA911569",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A01CD59B-8F21-4CD6-8A1A-7B37547A8715",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Due to an incorrect SMMU configuration, the modem crypto engine can potentially compromise the hypervisor' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, Bitra, Kamorta, Nicobar, QCA6390, QCS404, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Debido a una configuración incorrecta SMMU, el motor criptográfico del módem puede potencialmente comprometer el hipervisor en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones Agatti, Bitra, Kamorta, Nicobar, QCA6390, QCS404, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2020-3690",
   lastModified: "2024-11-21T05:31:34.943",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-11-02T07:15:14.843",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-Other",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-07-25 17:15
Modified
2024-11-21 04:40
Severity ?
5.5 (Medium) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Summary
While rendering the layout background, Error status check is not caught properly and also incorrect status handling is being done leading to unintended SUI behaviour in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX24, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
Impacted products
Vendor Product Version
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm sd_210_firmware -
qualcomm sd_210 -
qualcomm sd_212_firmware -
qualcomm sd_212 -
qualcomm sd_205_firmware -
qualcomm sd_205 -
qualcomm sd_410_firmware -
qualcomm sd_410 -
qualcomm sd_412_firmware -
qualcomm sd_412 -
qualcomm sd_636_firmware -
qualcomm sd_636 -
qualcomm sd_675_firmware -
qualcomm sd_675 -
qualcomm sd_712_firmware -
qualcomm sd_712 -
qualcomm sd_710_firmware -
qualcomm sd_710 -
qualcomm sd_670_firmware -
qualcomm sd_670 -
qualcomm sd_730_firmware -
qualcomm sd_730 -
qualcomm sd_820_firmware -
qualcomm sd_820 -
qualcomm sd_820a_firmware -
qualcomm sd_820a -
qualcomm sd_835_firmware -
qualcomm sd_835 -
qualcomm sd_845_firmware -
qualcomm sd_845 -
qualcomm sd_850_firmware -
qualcomm sd_850 -
qualcomm sd_855_firmware -
qualcomm sd_855 -
qualcomm sd_8cx_firmware -
qualcomm sd_8cx -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_210_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0FA80D57-3191-47CF-AD3F-9F2D64E443FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_210:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B2AFB212-F01A-4CEB-8DB4-2E0CC2308CB6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_212_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E0986EF1-0974-488E-84C4-6880F876CE55",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_212:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8C08BA58-2EBC-4A22-85A4-2ECD54693B9B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "27110478-4C08-49E6-BD53-8BAAD9D5BD65",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3664D302-D22A-4B25-B534-3097AE2F8573",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_410_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F683C42D-A310-4369-9689-3DBC9288591E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_410:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0EADE10A-0F63-4149-8F03-030673D6D7CE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_412_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A78C9449-5EB0-459B-AA72-EFF00592C30A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_412:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2D583172-F1F1-4DF8-99CE-B94A84D14CCD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CE94E380-CB75-462E-B411-BF38F17D53B2",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0947F38F-3DC2-45F1-B3B3-963922F32054",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_675_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3F900C8F-9763-441A-B97E-E5394A68A08A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_675:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "589C1001-E9F6-41A6-BCC8-A94A3C97F2E6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_712_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6BFF8872-645F-4A05-BAF9-7797CFBE37C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_712:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9CB91AFF-C149-4F5C-92EC-E78E66935528",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2B529780-DB0A-4F9C-AE63-6DEC593B86E5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "669E7360-E8C3-4BB8-A3B6-61BD58AFAF62",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49606C5-7306-4F33-864C-C1905594F09C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B43964AF-7CEC-420A-935B-D3895B2BAC70",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_730_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F5E6464-2341-40EC-B276-6CE49CF1DFDD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_730:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "73D9A6B7-2147-4992-ADC3-6A8DE3D3E0A5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E077FC03-F86F-417A-A3E6-BC88CB85C6F0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E016356C-94ED-4CDD-8351-97D265FE036E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E08016A2-E4FE-4E9C-A915-C66BE157AFB5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "018452D0-007C-4740-B2AF-E5C8BBAC310F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_835_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1CFF35A3-1472-4665-9DAB-1ABC45C0D5B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_835:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F930E9BF-C502-49C6-8BE8-9A711B89FA1B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0A2D2B3B-CB28-46AA-9117-A7FA371FDE80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE18BF66-B0DB-48BB-B43A-56F01821F5A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0C10C7CB-3B66-4F17-8146-6A85611E2BA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B9DA765F-53DE-4FB0-B825-6C11B3177641",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_855_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "91400943-3D25-4E44-9FFD-9E3076305D80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_855:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "57B16867-710D-4748-8636-635E2C6F7389",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_8cx_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A71D1A7C-537F-458B-BA56-A11F95E36EA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_8cx:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716DEC4D-D854-44CD-8A14-AA5AFD96809E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "While rendering the layout background, Error status check is not caught properly and also incorrect status handling is being done leading to unintended SUI behaviour in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX24, SXR1130",
      },
      {
         lang: "es",
         value: "Mientras se renderiza el fondo del diseño, la comprobación del estado Error no se detecta apropiadamente y también se está realizando un manejo incorrecto del estado, lo que conduce a un comportamiento no previsto de la SUI en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en las versiones MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX24, SXR1130",
      },
   ],
   id: "CVE-2019-2241",
   lastModified: "2024-11-21T04:40:30.830",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 2.1,
               confidentialityImpact: "NONE",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:N/I:P/A:N",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 2.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV30: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "NONE",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "NONE",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
               version: "3.0",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-07-25T17:15:12.347",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-755",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:19
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'SMEM partition can be manipulated in case of any compromise on HLOS, thus resulting in access to memory outside of SMEM address range which could lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6574AU, QCA8081, QCM2150, QCN7605, QCN7606, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9207c_firmware -
qualcomm mdm9207c -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8909w_firmware -
qualcomm msm8909w -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca4531_firmware -
qualcomm qca4531 -
qualcomm qca6574au_firmware -
qualcomm qca6574au -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcn7606_firmware -
qualcomm qcn7606 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9207c_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3CFA66A-CD2E-4670-A137-65E2C94C1A11",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9207c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE52FE99-DF0D-4C57-BB9C-0B853D1AF58B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FE28A59C-7AA6-4B85-84E8-07852B96108E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5DEE828B-09A7-4AC1-8134-491A7C87C118",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca4531_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A13DB5D-38AC-4E50-A279-130AF24256E0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca4531:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "90A67611-CA55-4039-B4B5-AB87CD6CEA17",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D527E2B1-2A46-4FBA-9F7A-F5543677C8FB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8374DDB3-D484-4141-AE0C-42333D2721F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7606_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F466A5BD-1912-4811-9A93-81555F101D46",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7606:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0F92914E-16F6-4A25-9FEF-FB7CB3377132",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'SMEM partition can be manipulated in case of any compromise on HLOS, thus resulting in access to memory outside of SMEM address range which could lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6574AU, QCA8081, QCM2150, QCN7605, QCN7606, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una partición SMEM puede ser manipulada en el caso de cualquier compromiso en HLOS, resultando en un acceso a la memoria fuera del rango de direcciones de SMEM que podría conllevar a una corrupción de la memoria en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6574AU, QCA8081, QCM2150, QCN7605, QCN7606, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-10527",
   lastModified: "2024-11-21T04:19:21.650",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:12.077",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-129",
            },
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-12-12 09:15
Modified
2024-11-21 04:40
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
HLOS could corrupt CPZ page table memory for S1 managed VMs in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "HLOS could corrupt CPZ page table memory for S1 managed VMs in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "HLOS podría corromper la memoria de la tabla de páginas CPZ para Máquinas Virtuales administradas por S1 en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en las versiones MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-2319",
   lastModified: "2024-11-21T04:40:41.893",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-12-12T09:15:13.037",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-09 07:15
Modified
2024-11-21 05:31
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
u'During execution after Address Space Layout Randomization is turned on for QTEE, part of code is still mapped at known address including code segments' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, Kamorta, Nicobar, QCS404, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sa8155p_firmware -
qualcomm sa8155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C8648B38-2597-401A-8F53-D582FA911569",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A01CD59B-8F21-4CD6-8A1A-7B37547A8715",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'During execution after Address Space Layout Randomization is turned on for QTEE, part of code is still mapped at known address including code segments' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, Kamorta, Nicobar, QCS404, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
      },
      {
         lang: "es",
         value: "Durante una ejecución después de que Address Space Layout Randomization es activada para QTEE, parte del código todavía se asigna en la dirección conocida, incluyendo los segmentos de código en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones Bitra, Kamorta, Nicobar, QCS404, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130.",
      },
   ],
   id: "CVE-2020-3679",
   lastModified: "2024-11-21T05:31:33.770",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 2.1,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 2.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "NONE",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-09T07:15:10.220",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-noinfo",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-11-02 07:15
Modified
2024-11-21 05:31
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'QSEE reads the access permission policy for the SMEM TOC partition from the SMEM TOC contents populated by XBL Loader and applies them without validation' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8098, Bitra, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8998, Nicobar, QCA6390, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm agatti_firmware -
qualcomm agatti -
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sa8155p_firmware -
qualcomm sa8155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:agatti_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "39E6366C-4356-4689-B1B6-762861CB1813",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:agatti:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37440A79-2D29-4747-981B-7D2C526FFBC7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C8648B38-2597-401A-8F53-D582FA911569",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A01CD59B-8F21-4CD6-8A1A-7B37547A8715",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'QSEE reads the access permission policy for the SMEM TOC partition from the SMEM TOC contents populated by XBL Loader and applies them without validation' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8098, Bitra, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8998, Nicobar, QCA6390, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "QSEE lee la política de permisos de acceso para la partición SMEM TOC del contenido SMEM TOC poblado por XBL Loader y los aplica sin comprobación en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones Agatti, APQ8009, APQ8098, Bitra, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8998, Nicobar, QCA6390, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2020-3684",
   lastModified: "2024-11-21T05:31:34.140",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-11-02T07:15:14.733",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-Other",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-11-21 15:15
Modified
2024-11-21 04:40
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Out of bound access due to lack of check of whiltelist array size while reading the image elf segments. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Out of bound access due to lack of check of whiltelist array size while reading the image elf segments. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un acceso fuera del límite debido a una falta de comprobación del tamaño de la matriz de la lista blanca mientras se leen los segmentos de imagen elf. En los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en las versiones MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-2339",
   lastModified: "2024-11-21T04:40:45.007",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-11-21T15:15:16.527",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-129",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:25
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Summary
u'When a new session is created, Object is returned that contains TZ addresses and it get passed to HLOS as an handle to refer to a particular session and can cause TZ to jump to a invalid address' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'When a new session is created, Object is returned that contains TZ addresses and it get passed to HLOS as an handle to refer to a particular session and can cause TZ to jump to a invalid address' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
      },
      {
         lang: "es",
         value: "Cuando una nueva sesión es creada, es devuelto un objeto que contiene direcciones TZ y pasadas a HLOS como un manejo para referirse a una sesión en particular y puede causar que TZ salte a una dirección no válida en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en versiones Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
      },
   ],
   id: "CVE-2019-14025",
   lastModified: "2024-11-21T04:25:55.647",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 2.1,
               confidentialityImpact: "NONE",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:N/I:P/A:N",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 2.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "NONE",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "NONE",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:12.623",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-noinfo",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-11-02 07:15
Modified
2024-11-21 05:31
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
u'Buffer over-read issue in Bluetooth peripheral firmware due to lack of check for invalid opcode and length of opcode received from central device(This CVE is equivalent to Link Layer Length Overfow issue (CVE-2019-16336,CVE-2019-17519) and Silent Length Overflow issue(CVE-2019-17518) mentioned in sweyntooth paper)' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8053, APQ8076, AR9344, Bitra, Kamorta, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8917, MSM8937, MSM8940, MSM8953, Nicobar, QCA6174A, QCA9377, QCM2150, QCM6125, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SC8180X, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8076_firmware -
qualcomm apq8076 -
qualcomm ar9344_firmware -
qualcomm ar9344 -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9207c_firmware -
qualcomm mdm9207c -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6174a_firmware -
qualcomm qca6174a -
qualcomm qca9377_firmware -
qualcomm qca9377 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcm6125_firmware -
qualcomm qcm6125 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8076_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9A4CAA77-CC4D-49CF-9696-6C2542B31415",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8076:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E19E8B60-4C5C-4D1C-B9F0-AB1FC1F58949",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ar9344_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "31EF9AB9-64DB-4A2E-B831-A9FE25F7EF7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ar9344:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "87B414A7-91DE-4A13-A01B-EF976849EC98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9207c_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3CFA66A-CD2E-4670-A137-65E2C94C1A11",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9207c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE52FE99-DF0D-4C57-BB9C-0B853D1AF58B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4FF653D0-15CF-4A10-8D8E-BE56F4DAB890",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C31FA74C-6659-4457-BC32-257624F43C66",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C4D2B46E-3996-42FD-B932-09E92C02EC8A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "98E58C63-F253-4DCC-8A14-48FEB64B4C3D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm6125_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AB226552-52D9-44F5-A170-35C44761A72B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm6125:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB16DC4-CDC9-4936-9C6A-0ED8E1F6D056",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Buffer over-read issue in Bluetooth peripheral firmware due to lack of check for invalid opcode and length of opcode received from central device(This CVE is equivalent to Link Layer Length Overfow issue (CVE-2019-16336,CVE-2019-17519) and Silent Length Overflow issue(CVE-2019-17518) mentioned in sweyntooth paper)' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8053, APQ8076, AR9344, Bitra, Kamorta, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8917, MSM8937, MSM8940, MSM8953, Nicobar, QCA6174A, QCA9377, QCM2150, QCM6125, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SC8180X, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130",
      },
      {
         lang: "es",
         value: "Un problema de lectura excesiva del búfer en el firmware del periférico Bluetooth debido a una falta de comprobación del opcode no válido y la longitud del opcode recibido del dispositivo central (este CVE es equivalente a un problema de Link Layer Length Overfow (CVE-2019-16336, CVE-2019-17519) ) y un problema de Silent Length Overflow (CVE-2019-17518) mencionado en sweyntooth paper) en los productos  Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music en versiones APQ8053, APQ8076, AR9344, Bitra, Kamorta, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8917, MSM8937, MSM8940, MSM8953, Nicobar, QCA6174A, QCA9377, QCM2150, QCM6125, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SC8180X, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130",
      },
   ],
   id: "CVE-2020-3703",
   lastModified: "2024-11-21T05:31:36.480",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 7.5,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:N/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-11-02T07:15:15.247",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-20",
            },
            {
               lang: "en",
               value: "CWE-125",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-03-05 09:15
Modified
2024-11-21 04:26
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Buffer overflow occurs while processing LMP packet in which name length parameter exceeds value specified in BT-specification in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9379, QCA9886, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8016_firmware -
qualcomm apq8016 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8076_firmware -
qualcomm apq8076 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9207c_firmware -
qualcomm mdm9207c -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8909w_firmware -
qualcomm msm8909w -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8939_firmware -
qualcomm msm8939 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6174a_firmware -
qualcomm qca6174a -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qca6574au_firmware -
qualcomm qca6574au -
qualcomm qca9377_firmware -
qualcomm qca9377 -
qualcomm qca9379_firmware -
qualcomm qca9379 -
qualcomm qca9886_firmware -
qualcomm qca9886 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8016_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "81301BE5-3FA9-4053-97BC-11A9C10E196D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8016:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F6E79D48-F105-4D64-8C8F-88FE0345F5E1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8076_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9A4CAA77-CC4D-49CF-9696-6C2542B31415",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8076:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E19E8B60-4C5C-4D1C-B9F0-AB1FC1F58949",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9207c_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3CFA66A-CD2E-4670-A137-65E2C94C1A11",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9207c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE52FE99-DF0D-4C57-BB9C-0B853D1AF58B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FE28A59C-7AA6-4B85-84E8-07852B96108E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5DEE828B-09A7-4AC1-8134-491A7C87C118",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8939_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9CBADDE2-6CAD-487B-A6B9-FFFB6DFAB75D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8939:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3DA7A79E-0F04-41E6-8E37-49B2977D92B8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4FF653D0-15CF-4A10-8D8E-BE56F4DAB890",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C31FA74C-6659-4457-BC32-257624F43C66",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D527E2B1-2A46-4FBA-9F7A-F5543677C8FB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8374DDB3-D484-4141-AE0C-42333D2721F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C4D2B46E-3996-42FD-B932-09E92C02EC8A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "98E58C63-F253-4DCC-8A14-48FEB64B4C3D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9379_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "25565FDA-651D-4A05-8B1E-2188B6921253",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9379:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B8D49750-BBEA-4A3D-9898-28B7A50A7F42",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9886_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "311229F9-4A32-462D-AE8D-E5E2B2C416CE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9886:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A523C3F-FB62-4728-8173-4C117C28AC5A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Buffer overflow occurs while processing LMP packet in which name length parameter exceeds value specified in BT-specification in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9379, QCA9886, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Se presenta un desbordamiento del búfer mientras se procesa el paquete LMP en el cual el parámetro name length excede el valor definido en la especificación BT en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en las versiones APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9379, QCA9886, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14095",
   lastModified: "2024-11-21T04:26:04.940",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-03-05T09:15:17.877",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 05:31
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Resizing the usage table header before passing all the checks leads to the function exiting with a usage table in invalid state when a HLOS adversary calls the function with wrong input' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Bitra, Kamorta, QCS404, QCS610, Rennell, Saipan, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Resizing the usage table header before passing all the checks leads to the function exiting with a usage table in invalid state when a HLOS adversary calls the function with wrong input' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Bitra, Kamorta, QCS404, QCS610, Rennell, Saipan, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
      },
      {
         lang: "es",
         value: "Un cambio de tamaño del encabezado usage table antes de aprobar todas las comprobaciones conlleva a que la función salga con un usage table en estado no válido cuando un adversario de HLOS llama a la función con una entrada errónea en los productos Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en versiones Bitra, Kamorta, QCS404, QCS610, Rennell, Saipan, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130.",
      },
   ],
   id: "CVE-2020-3640",
   lastModified: "2024-11-21T05:31:27.880",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:15.483",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-131",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-03-05 09:15
Modified
2024-11-21 04:25
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Buffer overflow due to lack of upper bound check on channel length which is used for a loop. in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Buffer overflow due to lack of upper bound check on channel length which is used for a loop. in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un desbordamiento del búfer debido a la falta de comprobación del límite superior sobre la longitud del canal que es usado para un bucle. En los productos Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en las versiones APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14027",
   lastModified: "2024-11-21T04:25:55.927",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-03-05T09:15:16.703",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-03-05 09:15
Modified
2024-11-21 04:26
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
While parsing Service Descriptor Extended Attribute received as part of SDF frame, there is a possibility that incorrect length is specified in the attribute length field of extended SSI which can lead to integer underflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8053, APQ8096, APQ8098, IPQ6018, IPQ8074, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA8081, QCA9377, QCA9379, QCN7605, QCS404, QCS405, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6174a_firmware -
qualcomm qca6174a -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qca6574au_firmware -
qualcomm qca6574au -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qca9377_firmware -
qualcomm qca9377 -
qualcomm qca9379_firmware -
qualcomm qca9379 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4FF653D0-15CF-4A10-8D8E-BE56F4DAB890",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C31FA74C-6659-4457-BC32-257624F43C66",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D527E2B1-2A46-4FBA-9F7A-F5543677C8FB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8374DDB3-D484-4141-AE0C-42333D2721F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C4D2B46E-3996-42FD-B932-09E92C02EC8A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "98E58C63-F253-4DCC-8A14-48FEB64B4C3D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9379_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "25565FDA-651D-4A05-8B1E-2188B6921253",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9379:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B8D49750-BBEA-4A3D-9898-28B7A50A7F42",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "While parsing Service Descriptor Extended Attribute received as part of SDF frame, there is a possibility that incorrect length is specified in the attribute length field of extended SSI which can lead to integer underflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8053, APQ8096, APQ8098, IPQ6018, IPQ8074, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA8081, QCA9377, QCA9379, QCN7605, QCS404, QCS405, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Mientras se analiza el Service Descriptor Extended Attribute recibido como parte de la trama SDF, se presenta la posibilidad que una longitud incorrecta sea especificada en el campo attribute length del SSI extendido, lo que puede conllevar a un subdesbordamiento de enteros en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones APQ8009, APQ8053, APQ8096, APQ8098, IPQ6018, IPQ8074, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA8081, QCA9377, QCA9379, QCN7605, QCS404, QCS405, QCS605, Rennell, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14083",
   lastModified: "2024-11-21T04:26:03.530",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-03-05T09:15:17.687",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-191",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:25
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Out of bound memory access if stack push and pop operation are performed without doing a bound check on stack top' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Out of bound memory access if stack push and pop operation are performed without doing a bound check on stack top' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un acceso de la memoria fuera de límite si la operación de apilar y desapilar la pila se realizaba sin hacer una comprobación limitada en la parte superior de la pila en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-13992",
   lastModified: "2024-11-21T04:25:51.093",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:12.357",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-07-25 17:15
Modified
2024-11-21 04:40
Severity ?
5.5 (Medium) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Summary
While sending the rendered surface content to the screen, Error handling is not properly checked results in an unpredictable behaviour in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9880, QCA9886, QCA9980, QCN5502, QCS404, QCS605, SD 210/SD 212/SD 205, SD 425, SD 600, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
Impacted products
Vendor Product Version
qualcomm ipq4019_firmware -
qualcomm ipq4019 -
qualcomm ipq8064_firmware -
qualcomm ipq8064 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm qca6174a_firmware -
qualcomm qca6174a -
qualcomm qca6564_firmware -
qualcomm qca6564 -
qualcomm qca6574_firmware -
qualcomm qca6574 -
qualcomm qca6574au_firmware -
qualcomm qca6574au -
qualcomm qca6584_firmware -
qualcomm qca6584 -
qualcomm qca6584au_firmware -
qualcomm qca6584au -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qca9377_firmware -
qualcomm qca9377 -
qualcomm qca9379_firmware -
qualcomm qca9379 -
qualcomm qca9531_firmware -
qualcomm qca9531 -
qualcomm qca9880_firmware -
qualcomm qca9880 -
qualcomm qca9886_firmware -
qualcomm qca9886 -
qualcomm qca9980_firmware -
qualcomm qca9980 -
qualcomm qcn5502_firmware -
qualcomm qcn5502 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm sd_210_firmware -
qualcomm sd_210 -
qualcomm sd_212_firmware -
qualcomm sd_212 -
qualcomm sd_205_firmware -
qualcomm sd_205 -
qualcomm sd_425_firmware -
qualcomm sd_425 -
qualcomm sd_600_firmware -
qualcomm sd_600 -
qualcomm sd_625_firmware -
qualcomm sd_625 -
qualcomm sd_636_firmware -
qualcomm sd_636 -
qualcomm sd_675_firmware -
qualcomm sd_675 -
qualcomm sd_712_firmware -
qualcomm sd_712 -
qualcomm sd_710_firmware -
qualcomm sd_710 -
qualcomm sd_670_firmware -
qualcomm sd_670 -
qualcomm sd_730_firmware -
qualcomm sd_730 -
qualcomm sd_820_firmware -
qualcomm sd_820 -
qualcomm sd_820a_firmware -
qualcomm sd_820a -
qualcomm sd_835_firmware -
qualcomm sd_835 -
qualcomm sd_845_firmware -
qualcomm sd_845 -
qualcomm sd_850_firmware -
qualcomm sd_850 -
qualcomm sd_855_firmware -
qualcomm sd_855 -
qualcomm sd_8cx_firmware -
qualcomm sd_8cx -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq4019_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94CB547F-0078-47CD-B511-06DE96882D5A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq4019:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AA679375-BB14-4B24-8AD9-B2BFBACE2FDB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8064_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A1CC1C1-F2CA-4C43-B9E9-1288C3496C7B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8064:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC82552A-9E7C-4A13-B7A5-43CEA218675C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4FF653D0-15CF-4A10-8D8E-BE56F4DAB890",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C31FA74C-6659-4457-BC32-257624F43C66",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6564_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00FE294D-4BE0-4436-9273-507E760884EC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6564:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "424CB795-58E5-43A4-A2EC-C563D93C5E72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9B828AC8-4A01-4537-B2BD-8180C99F5C32",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "66C16E1E-9D4A-4F20-B697-833FDCCA86FB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D527E2B1-2A46-4FBA-9F7A-F5543677C8FB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8374DDB3-D484-4141-AE0C-42333D2721F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6584_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CFB656-804A-453C-A39B-1B08C0A16BB9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6584:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7F0C9ED5-27E3-48EC-9A05-862715EE2034",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C3DDA896-576C-44B8-85B6-F71F473F776B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6584au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "51A87BDA-5B24-4212-BAB3-D2BBB2F4162E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C4D2B46E-3996-42FD-B932-09E92C02EC8A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "98E58C63-F253-4DCC-8A14-48FEB64B4C3D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9379_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "25565FDA-651D-4A05-8B1E-2188B6921253",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9379:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B8D49750-BBEA-4A3D-9898-28B7A50A7F42",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9531_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E71452E6-551F-4E93-9951-2582C60BDFCE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9531:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6D69FB0E-FDFF-42B8-ADAD-797B7C91E979",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9880_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7F81D132-B2DD-4D09-8561-21A2CFBCC9FA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9880:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F099A893-232B-48FB-81B3-F01AF2A19426",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9886_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "311229F9-4A32-462D-AE8D-E5E2B2C416CE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9886:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A523C3F-FB62-4728-8173-4C117C28AC5A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9980_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DCBC53AC-E040-40E0-B09B-4117E641C9D4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9980:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AE49086-E95B-4852-8A09-16A83DD63EC9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn5502_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D33E62D2-931E-465C-BC8E-71FB36CF6E36",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn5502:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "254F1AB0-C21A-41A6-9B9B-ED074A4C9EBD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_210_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0FA80D57-3191-47CF-AD3F-9F2D64E443FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_210:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B2AFB212-F01A-4CEB-8DB4-2E0CC2308CB6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_212_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E0986EF1-0974-488E-84C4-6880F876CE55",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_212:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8C08BA58-2EBC-4A22-85A4-2ECD54693B9B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "27110478-4C08-49E6-BD53-8BAAD9D5BD65",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3664D302-D22A-4B25-B534-3097AE2F8573",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_425_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C56BC939-2FE8-4AB4-B638-35C83B224005",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_425:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E36C12E2-7064-41E6-B357-3F0E6E6D0A0F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_600_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "607AA2E2-69A9-4A8A-B9E3-137D37CB7632",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_600:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4FF1492A-884D-4E59-8A1C-E39A105E2CAA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_625_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "06E0CC35-AC20-42D7-8FEA-CA4685E33E72",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_625:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4A2C4DED-2367-4736-A0AF-C8356F1271AD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CE94E380-CB75-462E-B411-BF38F17D53B2",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0947F38F-3DC2-45F1-B3B3-963922F32054",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_675_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3F900C8F-9763-441A-B97E-E5394A68A08A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_675:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "589C1001-E9F6-41A6-BCC8-A94A3C97F2E6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_712_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6BFF8872-645F-4A05-BAF9-7797CFBE37C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_712:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9CB91AFF-C149-4F5C-92EC-E78E66935528",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2B529780-DB0A-4F9C-AE63-6DEC593B86E5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "669E7360-E8C3-4BB8-A3B6-61BD58AFAF62",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49606C5-7306-4F33-864C-C1905594F09C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B43964AF-7CEC-420A-935B-D3895B2BAC70",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_730_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F5E6464-2341-40EC-B276-6CE49CF1DFDD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_730:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "73D9A6B7-2147-4992-ADC3-6A8DE3D3E0A5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E077FC03-F86F-417A-A3E6-BC88CB85C6F0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E016356C-94ED-4CDD-8351-97D265FE036E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E08016A2-E4FE-4E9C-A915-C66BE157AFB5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "018452D0-007C-4740-B2AF-E5C8BBAC310F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_835_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1CFF35A3-1472-4665-9DAB-1ABC45C0D5B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_835:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F930E9BF-C502-49C6-8BE8-9A711B89FA1B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0A2D2B3B-CB28-46AA-9117-A7FA371FDE80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE18BF66-B0DB-48BB-B43A-56F01821F5A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0C10C7CB-3B66-4F17-8146-6A85611E2BA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B9DA765F-53DE-4FB0-B825-6C11B3177641",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_855_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "91400943-3D25-4E44-9FFD-9E3076305D80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_855:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "57B16867-710D-4748-8636-635E2C6F7389",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_8cx_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A71D1A7C-537F-458B-BA56-A11F95E36EA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_8cx:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716DEC4D-D854-44CD-8A14-AA5AFD96809E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "While sending the rendered surface content to the screen, Error handling is not properly checked results in an unpredictable behaviour in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9880, QCA9886, QCA9980, QCN5502, QCS404, QCS605, SD 210/SD 212/SD 205, SD 425, SD 600, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130",
      },
      {
         lang: "es",
         value: "Mientras se envía el contenido de superficie renderizada hacia la pantalla, el manejo de errores no se comprueba apropiadamente, lo que se traduce en un comportamiento impredecible en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones IPQ4019, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9880, QCA9886, QCA9980, QCN5502, QCS404, QCS605, SD 210/SD 212/SD 205, SD 425, SD 600, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130.",
      },
   ],
   id: "CVE-2019-2240",
   lastModified: "2024-11-21T04:40:30.647",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 2.1,
               confidentialityImpact: "NONE",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:N/I:P/A:N",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 2.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV30: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "NONE",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "NONE",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
               version: "3.0",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-07-25T17:15:12.270",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-755",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-07-30 12:15
Modified
2024-11-21 04:26
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Memory failure in content protection module due to not having pointer within the scope in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/july-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Memory failure in content protection module due to not having pointer within the scope in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
      },
      {
         lang: "es",
         value: "Un fallo de la memoria en el módulo de protección de contenido debido a que no tiene puntero dentro del alcance en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en versiones Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
      },
   ],
   id: "CVE-2019-14124",
   lastModified: "2024-11-21T04:26:07.890",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-07-30T12:15:11.707",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-824",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-12-12 09:15
Modified
2024-11-21 04:40
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Incorrect length used while validating the qsee log buffer sent from HLOS which could then lead to remap conflict in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ4019, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq4019_firmware -
qualcomm ipq4019 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9207c_firmware -
qualcomm mdm9207c -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8909w_firmware -
qualcomm msm8909w -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8939_firmware -
qualcomm msm8939 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm snapdragon_high_med_2016_firmware -
qualcomm snapdragon_high_med_2016 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq4019_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94CB547F-0078-47CD-B511-06DE96882D5A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq4019:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AA679375-BB14-4B24-8AD9-B2BFBACE2FDB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9207c_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3CFA66A-CD2E-4670-A137-65E2C94C1A11",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9207c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE52FE99-DF0D-4C57-BB9C-0B853D1AF58B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FE28A59C-7AA6-4B85-84E8-07852B96108E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5DEE828B-09A7-4AC1-8134-491A7C87C118",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8939_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9CBADDE2-6CAD-487B-A6B9-FFFB6DFAB75D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8939:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3DA7A79E-0F04-41E6-8E37-49B2977D92B8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:snapdragon_high_med_2016_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "706B5BF5-3803-4D3C-8A3B-34D30D8B36F9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:snapdragon_high_med_2016:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C69745BA-DE6A-4646-959D-C45166559952",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Incorrect length used while validating the qsee log buffer sent from HLOS which could then lead to remap conflict in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ4019, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una longitud incorrecta usada al comprobar el búfer de registro qsee enviado desde HLOS que podría conllevar a un conflicto de reasignación en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en las versiones APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ4019, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-2321",
   lastModified: "2024-11-21T04:40:42.180",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-12-12T09:15:13.190",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-03-05 09:15
Modified
2024-11-21 04:26
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Compromised reset handler may bypass access control due to AC config is being reset if debug path is enabled to collect secure or non-secure ram dumps in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8017, APQ8053, APQ8096, APQ8096AU, IPQ6018, MDM9205, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Compromised reset handler may bypass access control due to AC config is being reset if debug path is enabled to collect secure or non-secure ram dumps in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8017, APQ8053, APQ8096, APQ8096AU, IPQ6018, MDM9205, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un manejador de restablecimiento comprometido puede omitir el control de acceso debido a que la configuración AC esta siendo restablecida si la ruta de depuración está habilitada para recoger volcamientos de ram seguros o no seguros en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones APQ8017, APQ8053, APQ8096, APQ8096AU, IPQ6018, MDM9205, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14071",
   lastModified: "2024-11-21T04:26:01.687",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "MEDIUM",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 6.9,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:M/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.4,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-03-05T09:15:17.390",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-noinfo",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 05:31
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
u'Lack of check of integer overflow while doing a round up operation for data read from shared memory for G-link SMEM transport can lead to corruption and potential information leak' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9645_firmware -
qualcomm mdm9645 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdx24_firmware -
qualcomm sdx24 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9645_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "65E5C59A-ABCF-4F62-8C6D-ECDACDAA83C9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9645:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1F8F856B-70D7-4A1A-8257-90AAAE62CD6F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Lack of check of integer overflow while doing a round up operation for data read from shared memory for G-link SMEM transport can lead to corruption and potential information leak' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una falta de comprobación del desbordamiento de enteros mientras se realiza una operación de redondeo para la lectura de datos de la memoria compartida para el transporte SMEM de G-link puede conllevar a una corrupción y un potencial filtrado de información en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2020-3620",
   lastModified: "2024-11-21T05:31:25.327",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 2.1,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 2.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "NONE",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:15.043",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-190",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-06-02 15:15
Modified
2024-11-21 05:31
Severity ?
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
Firmware will hit assert in WLAN firmware If encrypted data length in FILS IE of reassoc response is more than 528 bytes in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm sdm845_firmware -
qualcomm sdm845 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Firmware will hit assert in WLAN firmware If encrypted data length in FILS IE of reassoc response is more than 528 bytes in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "El firmware logrará aplicar en el firmware WLAN si la longitud de datos cifrados en FILS IE de la respuesta de reassoc es más de 528 bytes en los productos Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones PQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2020-3645",
   lastModified: "2024-11-21T05:31:28.563",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.8,
               confidentialityImpact: "NONE",
               integrityImpact: "NONE",
               vectorString: "AV:N/AC:L/Au:N/C:N/I:N/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 6.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 7.5,
               baseSeverity: "HIGH",
               confidentialityImpact: "NONE",
               integrityImpact: "NONE",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-06-02T15:15:14.133",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-617",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-11-21 15:15
Modified
2024-11-21 04:40
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Use after free issue in cleanup routine due to missing pointer sanitization for a failed start of a trusted application. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Use after free issue in cleanup routine due to missing pointer sanitization for a failed start of a trusted application. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un problema de uso de la memoria previamente liberada en la rutina cleanup debido a la falta de saneamiento del puntero para un inicio fallido de una aplicación confiable. En los productos Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en las versiones MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-2329",
   lastModified: "2024-11-21T04:40:43.497",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-11-21T15:15:16.307",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-416",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:19
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'User Process can potentially corrupt kernel virtual page by passing a crafted page in API' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'User Process can potentially corrupt kernel virtual page by passing a crafted page in API' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un proceso del usuario puede potencialmente corromper la página virtual del kernel al aprobar una página diseñada en la API en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones Bitra, IPQ6018, IPQ8074, MDM9205, Nicobar, QCA8081, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-10629",
   lastModified: "2024-11-21T04:19:37.483",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:12.310",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-129",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:26
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Heap overflow in diag command handler due to lack of check of packet length received from user' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8076_firmware -
qualcomm apq8076 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9207c_firmware -
qualcomm mdm9207c -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9625_firmware -
qualcomm mdm9625 -
qualcomm mdm9635m_firmware -
qualcomm mdm9635m -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9645_firmware -
qualcomm mdm9645 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8909w_firmware -
qualcomm msm8909w -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8076_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9A4CAA77-CC4D-49CF-9696-6C2542B31415",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8076:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E19E8B60-4C5C-4D1C-B9F0-AB1FC1F58949",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9207c_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3CFA66A-CD2E-4670-A137-65E2C94C1A11",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9207c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE52FE99-DF0D-4C57-BB9C-0B853D1AF58B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9625_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "93AE9CA0-59C4-4C7E-8D5E-E0226117C45A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9625:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "467A5C4D-9909-44B5-9D1B-B746902FF094",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9635m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9EF77DD1-BE11-4132-9889-646196FAE567",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9635m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CB323C15-2018-4CB8-858E-56F088B03FBB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9645_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "65E5C59A-ABCF-4F62-8C6D-ECDACDAA83C9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9645:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1F8F856B-70D7-4A1A-8257-90AAAE62CD6F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FE28A59C-7AA6-4B85-84E8-07852B96108E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5DEE828B-09A7-4AC1-8134-491A7C87C118",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Heap overflow in diag command handler due to lack of check of packet length received from user' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un desbordamiento de la pila en el manejador de comandos diag debido a una falta de comprobación de la longitud del paquete recibido del usuario en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-14074",
   lastModified: "2024-11-21T04:26:02.187",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:12.887",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-20",
            },
            {
               lang: "en",
               value: "CWE-190",
            },
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-07-30 12:15
Modified
2024-11-21 04:26
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Possible buffer overflow and over read possible due to missing bounds checks for fixed limits if we consider widevine HLOS client as non-trustable in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/july-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Possible buffer overflow and over read possible due to missing bounds checks for fixed limits if we consider widevine HLOS client as non-trustable in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
      },
      {
         lang: "es",
         value: "Un posible desbordamiento del búfer y posible lectura excesiva debido falta de comprobaciones de límites para límites fijos si consideramos que el cliente widevine HLOS no es confiable en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en versiones Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
      },
   ],
   id: "CVE-2019-14123",
   lastModified: "2024-11-21T04:26:07.767",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-07-30T12:15:11.647",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-20",
            },
            {
               lang: "en",
               value: "CWE-125",
            },
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 05:31
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
u'Buffer Overflow issue in WLAN tcp ip verification due to usage of out of range pointer offset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link, Vendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq5018_firmware -
qualcomm ipq5018 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq5018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C84001E-B14B-4657-85E1-60FB0AD388AF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq5018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E84640A-6848-4C76-96FC-EA349801D440",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Buffer Overflow issue in WLAN tcp ip verification due to usage of out of range pointer offset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130",
      },
      {
         lang: "es",
         value: "Un problema de Desbordamiento del Búfer en la verificación de WLAN tcp ip debido al uso de un desplazamiento de puntero fuera de rango en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130.",
      },
   ],
   id: "CVE-2020-3669",
   lastModified: "2024-11-21T05:31:32.473",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:16.200",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-119",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-06-02 15:15
Modified
2024-11-21 04:25
Severity ?
7.1 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Summary
Out of bound read in in fingerprint application due to requested data assigned to a local buffer without length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9205, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Out of bound read in in fingerprint application due to requested data assigned to a local buffer without length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9205, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una lectura fuera de límite en la aplicación fingerprint debido a que los datos solicitados se asignaron a un búfer local sin comprobación de longitud en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones Kamorta, MDM9205, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14042",
   lastModified: "2024-11-21T04:25:57.983",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 3.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 4.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.1,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.2,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-06-02T15:15:10.807",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-125",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-06-02 15:15
Modified
2024-11-21 04:26
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
Using non-time-constant functions like memcmp to compare sensitive data can lead to information leakage through timing side channel issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8909w_firmware -
qualcomm msm8909w -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FE28A59C-7AA6-4B85-84E8-07852B96108E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5DEE828B-09A7-4AC1-8134-491A7C87C118",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Using non-time-constant functions like memcmp to compare sensitive data can lead to information leakage through timing side channel issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "El uso de funciones que no son constantes en el tiempo, como memcmp, para comparar datos confidenciales puede conllevar a un filtrado de información mediante un problema del canal lateral de sincronización. En los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en las versiones APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14067",
   lastModified: "2024-11-21T04:26:01.197",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 2.1,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 2.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "NONE",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-06-02T15:15:11.133",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-203",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-04-16 11:15
Modified
2024-11-21 04:26
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Potential buffer overflow while processing CBF frames due to lack of check of buffer length before copy in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Potential buffer overflow while processing CBF frames due to lack of check of buffer length before copy in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un potencial desbordamiento del búfer mientras se procesa trama CBF debido a una falta de comprobación de longitud del búfer antes de la copia en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en versiones APQ8098, IPQ6018, IPQ8074, MSM8998, Nicobar, QCA8081, QCN7605, QCS404, QCS605, Rennell, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14112",
   lastModified: "2024-11-21T04:26:06.580",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-04-16T11:15:15.120",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-06-22 07:15
Modified
2024-11-21 04:26
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Integer overflow in diag command handler when user inputs a large value for number of tasks field in the request packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/june-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9207c_firmware -
qualcomm mdm9207c -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9625_firmware -
qualcomm mdm9625 -
qualcomm mdm9635m_firmware -
qualcomm mdm9635m -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9645_firmware -
qualcomm mdm9645 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8909w_firmware -
qualcomm msm8909w -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9207c_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3CFA66A-CD2E-4670-A137-65E2C94C1A11",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9207c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE52FE99-DF0D-4C57-BB9C-0B853D1AF58B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9625_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "93AE9CA0-59C4-4C7E-8D5E-E0226117C45A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9625:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "467A5C4D-9909-44B5-9D1B-B746902FF094",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9635m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9EF77DD1-BE11-4132-9889-646196FAE567",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9635m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CB323C15-2018-4CB8-858E-56F088B03FBB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9645_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "65E5C59A-ABCF-4F62-8C6D-ECDACDAA83C9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9645:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1F8F856B-70D7-4A1A-8257-90AAAE62CD6F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FE28A59C-7AA6-4B85-84E8-07852B96108E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5DEE828B-09A7-4AC1-8134-491A7C87C118",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Integer overflow in diag command handler when user inputs a large value for number of tasks field in the request packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un desbordamiento de enteros en el manejador de comandos diag cuando el usuario ingresa un valor grande para el campo número de tareas en el paquete de petición en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-14094",
   lastModified: "2024-11-21T04:26:04.737",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-06-22T07:15:11.773",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/june-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-190",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-11-02 07:15
Modified
2024-11-21 04:56
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Possible buffer overflow in MHI driver due to lack of input parameter validation of EOT events received from MHI device side' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8917, MSM8953, Nicobar, QCA6390, QCM2150, QCS404, QCS405, QCS605, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletinPatch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm agatti_firmware -
qualcomm agatti -
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm ipq4019_firmware -
qualcomm ipq4019 -
qualcomm ipq5018_firmware -
qualcomm ipq5018 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8064_firmware -
qualcomm ipq8064 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm qrb5165_firmware -
qualcomm qrb5165 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sa8155p_firmware -
qualcomm sa8155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:agatti_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "39E6366C-4356-4689-B1B6-762861CB1813",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:agatti:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37440A79-2D29-4747-981B-7D2C526FFBC7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq4019_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94CB547F-0078-47CD-B511-06DE96882D5A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq4019:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AA679375-BB14-4B24-8AD9-B2BFBACE2FDB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq5018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C84001E-B14B-4657-85E1-60FB0AD388AF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq5018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E84640A-6848-4C76-96FC-EA349801D440",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8064_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A1CC1C1-F2CA-4C43-B9E9-1288C3496C7B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8064:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC82552A-9E7C-4A13-B7A5-43CEA218675C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qrb5165_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "89A1AAD0-9336-4657-8E1E-74E8F490C06E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qrb5165:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "386F2F37-974B-40F2-9B23-ABD49C60E32D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C8648B38-2597-401A-8F53-D582FA911569",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A01CD59B-8F21-4CD6-8A1A-7B37547A8715",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Possible buffer overflow in MHI driver due to lack of input parameter validation of EOT events received from MHI device side' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8917, MSM8953, Nicobar, QCA6390, QCM2150, QCS404, QCS405, QCS605, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
      },
      {
         lang: "es",
         value: "Una potencial desbordamiento de búfer en el controlador MHI debido a una falta de comprobación de parámetros de entrada de eventos EOT recibidos del lado del dispositivo MHI en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8917, MSM8953, Nicobar, QCA6390, QCM2150, QCS404, QCS405, QCS605, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
      },
   ],
   id: "CVE-2020-11162",
   lastModified: "2024-11-21T04:56:59.210",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-11-02T07:15:13.873",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-06-02 15:15
Modified
2024-11-21 04:26
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Out of bound memory access while processing ese transmit command due to passing Response buffer received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Out of bound memory access while processing ese transmit command due to passing Response buffer received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un acceso a la memoria fuera de límite mientras se procesa el comando de transmisión ese debido al paso del búfer de Respuesta recibida del usuario en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones APQ8009, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14077",
   lastModified: "2024-11-21T04:26:02.703",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-06-02T15:15:11.197",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-704",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-03-05 09:15
Modified
2024-11-21 04:25
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
The size of a buffer is determined by addition and multiplications operations that have the potential to overflow due to lack of bound check in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, Rennell, SC8180X, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "The size of a buffer is determined by addition and multiplications operations that have the potential to overflow due to lack of bound check in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, Rennell, SC8180X, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
      },
      {
         lang: "es",
         value: "El tamaño de un buffer es determinado por operaciones de suma y multiplicación que tienen el potencial de desbordarlo debido a una falta de comprobación de limites en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en las versiones MDM9205, QCS404, Rennell, SC8180X, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130.",
      },
   ],
   id: "CVE-2019-14030",
   lastModified: "2024-11-21T04:25:56.370",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-03-05T09:15:16.890",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:25
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Possible integer overflow in API due to lack of check on large oid range count in cert extension field' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Possible integer overflow in API due to lack of check on large oid range count in cert extension field' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un posible desbordamiento de enteros en la API debido a una falta de comprobación en un conteo de rango de OID grande en el campo de extensión del certificado en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-14056",
   lastModified: "2024-11-21T04:25:59.970",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:12.733",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-190",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-11-21 15:15
Modified
2024-11-21 04:40
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
Subsequent use of the CBO listener may result in further memory corruption due to use after free issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, SDX55, SM6150, SM7150, SM8150, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Subsequent use of the CBO listener may result in further memory corruption due to use after free issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, SDX55, SM6150, SM7150, SM8150, SXR2130",
      },
      {
         lang: "es",
         value: "El uso posterior del listener CBO puede resultar en más corrupción en la memoria debido a un problema de uso de la memoria previamente liberada. En los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones MDM9205, QCS404, SDX55, SM6150, SM7150, SM8150, SXR2130.",
      },
   ],
   id: "CVE-2019-2336",
   lastModified: "2024-11-21T04:40:44.577",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 4.9,
               confidentialityImpact: "NONE",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:N/I:N/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "NONE",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-11-21T15:15:16.463",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-416",
            },
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-04-16 11:15
Modified
2024-11-21 04:26
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Buffer overflow in WLAN firmware while parsing GTK IE containing GTK key having length more than the buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8064_firmware -
qualcomm apq8064 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9207c_firmware -
qualcomm mdm9207c -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca4531_firmware -
qualcomm qca4531 -
qualcomm qca6174a_firmware -
qualcomm qca6174a -
qualcomm qca6564_firmware -
qualcomm qca6564 -
qualcomm qca6574_firmware -
qualcomm qca6574 -
qualcomm qca6574au_firmware -
qualcomm qca6574au -
qualcomm qca6584_firmware -
qualcomm qca6584 -
qualcomm qca6584au_firmware -
qualcomm qca6584au -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qca9377_firmware -
qualcomm qca9377 -
qualcomm qca9379_firmware -
qualcomm qca9379 -
qualcomm qca9886_firmware -
qualcomm qca9886 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8064_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "349F2550-D3FE-4C31-A4F1-E1E44D6054AC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8064:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6C7BF553-4EAC-455D-9743-9C359CAA65E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9207c_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3CFA66A-CD2E-4670-A137-65E2C94C1A11",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9207c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE52FE99-DF0D-4C57-BB9C-0B853D1AF58B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca4531_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A13DB5D-38AC-4E50-A279-130AF24256E0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca4531:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "90A67611-CA55-4039-B4B5-AB87CD6CEA17",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4FF653D0-15CF-4A10-8D8E-BE56F4DAB890",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C31FA74C-6659-4457-BC32-257624F43C66",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6564_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00FE294D-4BE0-4436-9273-507E760884EC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6564:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "424CB795-58E5-43A4-A2EC-C563D93C5E72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9B828AC8-4A01-4537-B2BD-8180C99F5C32",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "66C16E1E-9D4A-4F20-B697-833FDCCA86FB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D527E2B1-2A46-4FBA-9F7A-F5543677C8FB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8374DDB3-D484-4141-AE0C-42333D2721F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6584_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CFB656-804A-453C-A39B-1B08C0A16BB9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6584:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7F0C9ED5-27E3-48EC-9A05-862715EE2034",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C3DDA896-576C-44B8-85B6-F71F473F776B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6584au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "51A87BDA-5B24-4212-BAB3-D2BBB2F4162E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C4D2B46E-3996-42FD-B932-09E92C02EC8A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "98E58C63-F253-4DCC-8A14-48FEB64B4C3D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9379_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "25565FDA-651D-4A05-8B1E-2188B6921253",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9379:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B8D49750-BBEA-4A3D-9898-28B7A50A7F42",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9886_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "311229F9-4A32-462D-AE8D-E5E2B2C416CE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9886:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A523C3F-FB62-4728-8173-4C117C28AC5A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Buffer overflow in WLAN firmware while parsing GTK IE containing GTK key having length more than the buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un desbordamiento del búfer en el firmware de WLAN mientras se analiza GTK IE que contiene la clave GTK con una longitud superior al tamaño del búfer en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8064, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14114",
   lastModified: "2024-11-21T04:26:06.887",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-04-16T11:15:15.260",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-190",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-03-05 09:15
Modified
2024-11-21 04:25
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Possible buffer overflow in WLAN WMI handler due to lack of ssid length check when copying data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9207c_firmware -
qualcomm mdm9207c -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6174a_firmware -
qualcomm qca6174a -
qualcomm qca6574_firmware -
qualcomm qca6574 -
qualcomm qca6574au_firmware -
qualcomm qca6574au -
qualcomm qca6584au_firmware -
qualcomm qca6584au -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qca9377_firmware -
qualcomm qca9377 -
qualcomm qca9379_firmware -
qualcomm qca9379 -
qualcomm qca9886_firmware -
qualcomm qca9886 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9207c_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3CFA66A-CD2E-4670-A137-65E2C94C1A11",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9207c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE52FE99-DF0D-4C57-BB9C-0B853D1AF58B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4FF653D0-15CF-4A10-8D8E-BE56F4DAB890",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C31FA74C-6659-4457-BC32-257624F43C66",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9B828AC8-4A01-4537-B2BD-8180C99F5C32",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "66C16E1E-9D4A-4F20-B697-833FDCCA86FB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D527E2B1-2A46-4FBA-9F7A-F5543677C8FB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8374DDB3-D484-4141-AE0C-42333D2721F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C3DDA896-576C-44B8-85B6-F71F473F776B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6584au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "51A87BDA-5B24-4212-BAB3-D2BBB2F4162E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C4D2B46E-3996-42FD-B932-09E92C02EC8A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "98E58C63-F253-4DCC-8A14-48FEB64B4C3D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9379_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "25565FDA-651D-4A05-8B1E-2188B6921253",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9379:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B8D49750-BBEA-4A3D-9898-28B7A50A7F42",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9886_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "311229F9-4A32-462D-AE8D-E5E2B2C416CE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9886:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A523C3F-FB62-4728-8173-4C117C28AC5A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Possible buffer overflow in WLAN WMI handler due to lack of ssid length check when copying data in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un posible desbordamiento del búfer en el manejador WLAN WMI debido a la falta de comprobación de la longitud del ssid cuando se copian datos en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14026",
   lastModified: "2024-11-21T04:25:55.770",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-03-05T09:15:16.640",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 05:31
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
u'Buffer Overflow in mic calculation for WPA due to copying data into buffer without validating the length of buffer' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCS404, QCS405, QCS605, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link, Vendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq5018_firmware -
qualcomm ipq5018 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq5018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C84001E-B14B-4657-85E1-60FB0AD388AF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq5018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E84640A-6848-4C76-96FC-EA349801D440",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Buffer Overflow in mic calculation for WPA due to copying data into buffer without validating the length of buffer' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCS404, QCS405, QCS605, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130",
      },
      {
         lang: "es",
         value: "Un Desbordamiento del Búfer en el cálculo del micrófono para WPA debido a una copia de datos en el búfer sin comprobar la longitud del búfer en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones APQ8098, IPQ5018, IPQ6018, IPQ8074, Kamorta, MSM8998, Nicobar, QCA6390, QCA8081, QCS404, QCS405, QCS605, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130.",
      },
   ],
   id: "CVE-2020-3667",
   lastModified: "2024-11-21T05:31:32.180",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:16.090",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:25
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Lack of integer overflow check for addition of fragment size and remaining size that are read from shared memory can lead to memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9645_firmware -
qualcomm mdm9645 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9645_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "65E5C59A-ABCF-4F62-8C6D-ECDACDAA83C9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9645:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1F8F856B-70D7-4A1A-8257-90AAAE62CD6F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Lack of integer overflow check for addition of fragment size and remaining size that are read from shared memory can lead to memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una falta de comprobación del desbordamiento de enteros para adicionar el tamaño del fragmento y el tamaño restante que son leídos desde la memoria compartida puede conllevar a una corrupción de la memoria y un potencial filtrado de información en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-13995",
   lastModified: "2024-11-21T04:25:51.433",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:12.467",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-190",
            },
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-03-05 09:15
Modified
2024-11-21 04:25
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Lack of check that the RX FIFO write index that is read from shared RAM is less than the FIFO size results into memory corruption and potential information leakage in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9645_firmware -
qualcomm mdm9645 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9645_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "65E5C59A-ABCF-4F62-8C6D-ECDACDAA83C9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9645:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1F8F856B-70D7-4A1A-8257-90AAAE62CD6F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Lack of check that the RX FIFO write index that is read from shared RAM is less than the FIFO size results into memory corruption and potential information leakage in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una falta de comprobación de que el índice de escritura RX FIFO que se lee desde la memoria RAM compartida es menor que el tamaño de la FIFO, resulta en una corrupción de la memoria y en un potencial filtrado de información en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en las versiones APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14000",
   lastModified: "2024-11-21T04:25:51.963",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-03-05T09:15:16.517",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-06-02 15:15
Modified
2024-11-21 04:26
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Integer overflow in calculating estimated output buffer size when getting a list of installed Feature IDs, Serial Numbers or checking Feature ID status in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, Rennell, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Integer overflow in calculating estimated output buffer size when getting a list of installed Feature IDs, Serial Numbers or checking Feature ID status in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, Rennell, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SXR2130",
      },
      {
         lang: "es",
         value: "Un desbordamiento de enteros en el cálculo del tamaño estimado del búfer de salida al obtener una lista de IDs de Funcionalidades instaladas, Números de Serial o comprobación de estado del ID de la Funcionalidad en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, Rennell, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SXR2130.",
      },
   ],
   id: "CVE-2019-14066",
   lastModified: "2024-11-21T04:26:01.067",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-06-02T15:15:11.057",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-190",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-07-22 14:15
Modified
2024-11-21 03:48
Severity ?
7.8 (High) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Debug policy with invalid signature can be loaded when the debug policy functionality is disabled by using the parallel image loading in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 410/12, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
Impacted products
Vendor Product Version
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm sd_410_firmware -
qualcomm sd_410 -
qualcomm sd_412_firmware -
qualcomm sd_412 -
qualcomm sd_636_firmware -
qualcomm sd_636 -
qualcomm sd_712_firmware -
qualcomm sd_712 -
qualcomm sd_710_firmware -
qualcomm sd_710 -
qualcomm sd_670_firmware -
qualcomm sd_670 -
qualcomm sd_820_firmware -
qualcomm sd_820 -
qualcomm sd_820a_firmware -
qualcomm sd_820a -
qualcomm sd_835_firmware -
qualcomm sd_835 -
qualcomm sd_845_firmware -
qualcomm sd_845 -
qualcomm sd_850_firmware -
qualcomm sd_850 -
qualcomm sd_855_firmware -
qualcomm sd_855 -
qualcomm sd_8cx_firmware -
qualcomm sd_8cx -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_410_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F683C42D-A310-4369-9689-3DBC9288591E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_410:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0EADE10A-0F63-4149-8F03-030673D6D7CE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_412_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A78C9449-5EB0-459B-AA72-EFF00592C30A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_412:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2D583172-F1F1-4DF8-99CE-B94A84D14CCD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CE94E380-CB75-462E-B411-BF38F17D53B2",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0947F38F-3DC2-45F1-B3B3-963922F32054",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_712_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6BFF8872-645F-4A05-BAF9-7797CFBE37C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_712:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9CB91AFF-C149-4F5C-92EC-E78E66935528",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2B529780-DB0A-4F9C-AE63-6DEC593B86E5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "669E7360-E8C3-4BB8-A3B6-61BD58AFAF62",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49606C5-7306-4F33-864C-C1905594F09C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B43964AF-7CEC-420A-935B-D3895B2BAC70",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E077FC03-F86F-417A-A3E6-BC88CB85C6F0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E016356C-94ED-4CDD-8351-97D265FE036E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E08016A2-E4FE-4E9C-A915-C66BE157AFB5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "018452D0-007C-4740-B2AF-E5C8BBAC310F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_835_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1CFF35A3-1472-4665-9DAB-1ABC45C0D5B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_835:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F930E9BF-C502-49C6-8BE8-9A711B89FA1B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0A2D2B3B-CB28-46AA-9117-A7FA371FDE80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE18BF66-B0DB-48BB-B43A-56F01821F5A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0C10C7CB-3B66-4F17-8146-6A85611E2BA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B9DA765F-53DE-4FB0-B825-6C11B3177641",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_855_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "91400943-3D25-4E44-9FFD-9E3076305D80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_855:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "57B16867-710D-4748-8636-635E2C6F7389",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_8cx_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A71D1A7C-537F-458B-BA56-A11F95E36EA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_8cx:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716DEC4D-D854-44CD-8A14-AA5AFD96809E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Debug policy with invalid signature can be loaded when the debug policy functionality is disabled by using the parallel image loading in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 410/12, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130",
      },
      {
         lang: "es",
         value: "La política de depuración con firma no válida puede ser cargada cuando la funcionalidad debug policy está deshabilitada mediante el uso de la carga de imagen paralela en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en las versiones MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 410/12, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130",
      },
   ],
   id: "CVE-2018-13927",
   lastModified: "2024-11-21T03:48:21.090",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV30: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.0",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-07-22T14:15:11.300",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-287",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 05:31
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
u'Lack of check to ensure that the TX read index & RX write index that are read from shared memory are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9645_firmware -
qualcomm mdm9645 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdx24_firmware -
qualcomm sdx24 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9645_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "65E5C59A-ABCF-4F62-8C6D-ECDACDAA83C9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9645:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1F8F856B-70D7-4A1A-8257-90AAAE62CD6F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Lack of check to ensure that the TX read index & RX write index that are read from shared memory are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una falta de comprobación para garantizar que el índice de lectura TX y el índice de escritura RX que son leídos desde la memoria compartida son menores que el tamaño FIFO resulta en una corrupción de la memoria y un potencial filtrado de información en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2020-3621",
   lastModified: "2024-11-21T05:31:25.493",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 4.9,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:N/A:N",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "NONE",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:15.107",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-20",
            },
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-09 07:15
Modified
2024-11-21 04:56
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Possible use-after-free while accessing diag client map table since list can be reallocated due to exceeding max client limit.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, Nicobar, QCS404, QCS405, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC8180X, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletinPatch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletinPatch, Vendor Advisory
Impacted products
Vendor Product Version
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sa8155p_firmware -
qualcomm sa8155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C8648B38-2597-401A-8F53-D582FA911569",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A01CD59B-8F21-4CD6-8A1A-7B37547A8715",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Possible use-after-free while accessing diag client map table since list can be reallocated due to exceeding max client limit.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, Nicobar, QCS404, QCS405, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC8180X, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
      },
      {
         lang: "es",
         value: "Un posible uso de la memoria previamente liberada mientras se accede a la tabla de mapas del cliente diag ya que la lista puede ser reasignada debido a que excede el límite máximo de clientes en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music en versiones MDM9607, Nicobar, QCS404, QCS405, QCS610, Rennell, SA6155P, SA8155P, Saipan, SC8180X, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130.",
      },
   ],
   id: "CVE-2020-11124",
   lastModified: "2024-11-21T04:56:52.023",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-09T07:15:09.687",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/september-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-416",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-07-30 12:15
Modified
2024-11-21 04:26
Severity ?
7.1 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Summary
Out of bounds read can happen in diag event set mask command handler when user provided length in the command request is less than expected length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/july-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9625_firmware -
qualcomm mdm9625 -
qualcomm mdm9635m_firmware -
qualcomm mdm9635m -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8909w_firmware -
qualcomm msm8909w -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9625_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "93AE9CA0-59C4-4C7E-8D5E-E0226117C45A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9625:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "467A5C4D-9909-44B5-9D1B-B746902FF094",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9635m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9EF77DD1-BE11-4132-9889-646196FAE567",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9635m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CB323C15-2018-4CB8-858E-56F088B03FBB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FE28A59C-7AA6-4B85-84E8-07852B96108E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5DEE828B-09A7-4AC1-8134-491A7C87C118",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Out of bounds read can happen in diag event set mask command handler when user provided length in the command request is less than expected length in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130",
      },
      {
         lang: "es",
         value: "Una lectura fuera de límites puede ocurrir en el manejador de comandos de máscara del conjunto de eventos diag cuando la longitud proporcionada por el usuario en la petición de comando es menor que la longitud esperada en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8096, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, Rennell, SA415M, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130",
      },
   ],
   id: "CVE-2019-14101",
   lastModified: "2024-11-21T04:26:05.817",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 3.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 4.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.1,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.2,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-07-30T12:15:11.567",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-125",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-03-05 09:15
Modified
2024-11-21 04:19
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Buffer overflow can occur in WLAN firmware while parsing beacon/probe_response frames during roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8096, APQ8096AU, IPQ6018, IPQ8074, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCS404, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6174a_firmware -
qualcomm qca6174a -
qualcomm qca6574_firmware -
qualcomm qca6574 -
qualcomm qca6574au_firmware -
qualcomm qca6574au -
qualcomm qca6584_firmware -
qualcomm qca6584 -
qualcomm qca6584au_firmware -
qualcomm qca6584au -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qca9377_firmware -
qualcomm qca9377 -
qualcomm qca9379_firmware -
qualcomm qca9379 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4FF653D0-15CF-4A10-8D8E-BE56F4DAB890",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C31FA74C-6659-4457-BC32-257624F43C66",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9B828AC8-4A01-4537-B2BD-8180C99F5C32",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "66C16E1E-9D4A-4F20-B697-833FDCCA86FB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D527E2B1-2A46-4FBA-9F7A-F5543677C8FB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8374DDB3-D484-4141-AE0C-42333D2721F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6584_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CFB656-804A-453C-A39B-1B08C0A16BB9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6584:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7F0C9ED5-27E3-48EC-9A05-862715EE2034",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C3DDA896-576C-44B8-85B6-F71F473F776B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6584au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "51A87BDA-5B24-4212-BAB3-D2BBB2F4162E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C4D2B46E-3996-42FD-B932-09E92C02EC8A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "98E58C63-F253-4DCC-8A14-48FEB64B4C3D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9379_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "25565FDA-651D-4A05-8B1E-2188B6921253",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9379:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B8D49750-BBEA-4A3D-9898-28B7A50A7F42",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Buffer overflow can occur in WLAN firmware while parsing beacon/probe_response frames during roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8096, APQ8096AU, IPQ6018, IPQ8074, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCS404, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Se puede presentar un desbordamiento del búfer en el firmware de la WLAN mientras se analizan tramas beacon/probe_response durante la itinerancia en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en las versiones APQ8096, APQ8096AU, IPQ6018, IPQ8074, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCS404, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-10546",
   lastModified: "2024-11-21T04:19:25.217",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-03-05T09:15:15.423",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2022-06-14 10:15
Modified
2024-11-21 06:03
Severity ?
7.5 (High) - CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
6.8 (Medium) - CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Buffer overflow in sahara protocol while processing commands leads to overwrite of secure configuration data in Snapdragon Mobile, Snapdragon Compute, Snapdragon Auto, Snapdragon IOT, Snapdragon Connectivity, Snapdragon Voice & Music
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8097_firmware -
qualcomm apq8097 -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq6000_firmware -
qualcomm ipq6000 -
qualcomm ipq6005_firmware -
qualcomm ipq6005 -
qualcomm ipq6010_firmware -
qualcomm ipq6010 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq6028_firmware -
qualcomm ipq6028 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm msm8997_firmware -
qualcomm msm8997 -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm qca6595_firmware -
qualcomm qca6595 -
qualcomm qca6595au_firmware -
qualcomm qca6595au -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcn7605w_firmware -
qualcomm qcn7605w -
qualcomm qcn7606_firmware -
qualcomm qcn7606 -
qualcomm qcn7606w_firmware -
qualcomm qcn7606w -
qualcomm qcs401_firmware -
qualcomm qcs401 -
qualcomm qcs402_firmware -
qualcomm qcs402 -
qualcomm qcs403_firmware -
qualcomm qcs403 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs407_firmware -
qualcomm qcs407 -
qualcomm sa2145p_firmware -
qualcomm sa2145p -
qualcomm sa2150p_firmware -
qualcomm sa2150p -
qualcomm sa4150p_firmware -
qualcomm sa4150p -
qualcomm sa4155p_firmware -
qualcomm sa4155p -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa4250p_firmware -
qualcomm sa4250p -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sa6115_firmware -
qualcomm sa6115 -
qualcomm sa6115p_firmware -
qualcomm sa6115p -
qualcomm sa6125_firmware -
qualcomm sa6125 -
qualcomm sa6125p_firmware -
qualcomm sa6125p -
qualcomm sa6145_firmware -
qualcomm sa6145 -
qualcomm sa6145p_firmware -
qualcomm sa6145p -
qualcomm sa615x_firmware -
qualcomm sa615x -
qualcomm sa615xp_firmware -
qualcomm sa615xp -
qualcomm sa8150p_firmware -
qualcomm sa8150p -
qualcomm sa8155_firmware -
qualcomm sa8155 -
qualcomm sa8155p_firmware -
qualcomm sa8155p -
qualcomm sa8195p_firmware -
qualcomm sa8195p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc7180p_firmware -
qualcomm sc7180p -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sc8180xp_firmware -
qualcomm sc8180xp -
qualcomm sda658_firmware -
qualcomm sda658 -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda670_firmware -
qualcomm sda670 -
qualcomm sda830_firmware -
qualcomm sda830 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm640_firmware -
qualcomm sdm640 -
qualcomm sdm658_firmware -
qualcomm sdm658 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm712_firmware -
qualcomm sdm712 -
qualcomm sdm830_firmware -
qualcomm sdm830 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdpx55m_firmware -
qualcomm sdpx55m -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx24m_firmware -
qualcomm sdx24m -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm4250_firmware -
qualcomm sm4250 -
qualcomm sm6125_firmware -
qualcomm sm6125 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm6150p_firmware -
qualcomm sm6150p -
qualcomm sm6250_firmware -
qualcomm sm6250 -
qualcomm sm6250p_firmware -
qualcomm sm6250p -
qualcomm sm7125_firmware -
qualcomm sm7125 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm7150p_firmware -
qualcomm sm7150p -
qualcomm sm7250_firmware -
qualcomm sm7250 -
qualcomm sm7250p_firmware -
qualcomm sm7250p -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8150p_firmware -
qualcomm sm8150p -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -
qualcomm sxr2130p_firmware -
qualcomm sxr2130p -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8097_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "694410C0-38CD-41DA-B9FB-84D4C4425EE7",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8097:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E27C3870-58B3-47BC-9BED-2FDBD3B63946",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6000_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AA7A5C46-48BF-42A9-A477-A660C6D7B437",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6000:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EDB79382-19D6-4A67-9013-7099A9C58829",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6005_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A4695A9D-A02C-4E73-A327-E811C55B4EDF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6005:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "28E41848-525C-4126-89C2-54BD193768DB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6010_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A5CF970F-17AE-4C59-89A5-5B41A41E1DE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6010:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "71C54A70-AAA8-4B5E-AC1B-471A5C7E79B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6028_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "06126F30-D081-4A11-92FB-4074A451FAF9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6028:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E2550040-CCC7-4B52-8D3E-7948B3E3C62B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8997_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6D79604D-1C14-4A83-B363-911A4C4FDC3C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8997:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "09D00085-EEF4-44B5-9404-103D2F386471",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6595_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "643EC76D-2836-48E6-81DA-78C4883C33CA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6595:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "477F6529-4CE1-44FC-B6EE-D24D44C71AE7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "288F637F-22F8-47CF-B67F-C798A730A1BD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6595au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0996EA3-1C92-4933-BE34-9CF625E59FE7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "09B68F5A-7423-429A-9ED3-30C255D1D78C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B68E80F8-8E41-4186-9974-487E2456C19C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7606_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F466A5BD-1912-4811-9A93-81555F101D46",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7606:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0F92914E-16F6-4A25-9FEF-FB7CB3377132",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7606w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "48698D12-D8F1-4C6A-BE5D-A1A3D8D72C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7606w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B02AB4E9-203A-49B3-B774-DF3418D75382",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs401_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95C1CF30-302A-43E0-A636-4898F9E5B2DA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs401:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F241B681-D28F-4C89-A9D2-C94B5D51F0CD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs402_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C16DC5EF-EB2D-4A66-8B4C-78B566F817A5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs402:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "97BE7D52-77FA-4298-8CEA-D9862724FD74",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs403_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9B5FAA19-5D1E-4291-99FE-E38F6DC5105B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs403:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3F7D06D5-B907-486A-B45D-F277D1B7CBCC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs407_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "101257D2-C00F-4D96-8151-F5B3324B1574",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs407:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "588CFC39-2462-47AF-B515-57DA0C7574D0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa2145p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FD0DFFC9-74A5-4EA2-A7B5-1E5EA69AED0A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa2145p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "64A0748E-BDFA-4230-848F-BE00E6FAF1B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa2150p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "23586F55-C82A-4B4C-892A-EDAEE9ECE93D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa2150p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29A1C366-6B1F-43AA-92CF-623F91F29A06",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa4150p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0DC99C0C-8AE3-4918-B91D-2C26990FE931",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa4150p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A558A868-1B67-48D2-8A94-FDEA7126FAE7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa4155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D8D28764-EF4F-4FB3-B936-B42397450EFD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa4155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7964A762-467B-47D7-865F-30D48A0AE47C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa4250p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3401EF0-5D2F-430F-9EC6-3F912B2CE41D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa4250p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "582E9C5C-1A96-4D7D-B438-7C4AB0BA5DE9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6115_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "83C801E4-7113-4708-8BCC-A157BF8070B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6115:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D35C61C6-04EE-42AD-B95F-3BAF9BDB74A7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6115p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0256BAB1-F013-4E0F-848C-BCEDEFF4C640",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6115p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "787EAC60-56AC-4016-81DA-50528D8791BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6125_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "21687CDC-8D9B-4289-84F7-C1CDC976295F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6125:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D303305D-FC0D-48F0-AFFE-3D8A6374B25B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6125p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41CD8B3F-7BD0-4307-A76F-1619DDF9DBBC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6125p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "764324BB-5C98-4F65-918C-0588D76D1832",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6145_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F12984DA-159F-4843-A539-86970B028C26",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6145:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D66E4942-6BE5-4491-9637-6B1CB379249B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6145p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C66671C1-AE1A-44BE-9DB2-0B09FF4417DB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6145p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "74AA3929-3F80-4D54-B13A-9B070D5C03BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa615x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BC5D34E1-F98A-4B18-AF44-71DC1181E6B5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa615x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1457D1F2-251F-4CEB-8F16-67F02091643B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa615xp_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "057E47BC-8F76-4C0E-9B1A-A3FBFCEA2ECE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa615xp:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "89F6E4BD-F6F8-4242-9F62-7ACFE5F241BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa8150p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "69C1B02F-8D2D-42E7-B70D-41F4D9844FD1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa8150p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3FEACAA9-C061-4713-9A54-37D8BFC0B00B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa8155_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F33EB594-B0D3-42F2-B1CA-B0E6C9D82C6B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa8155:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50EF47E5-2875-412F-815D-44804BB3A739",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C8648B38-2597-401A-8F53-D582FA911569",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A01CD59B-8F21-4CD6-8A1A-7B37547A8715",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa8195p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "51BC0A66-493B-43BE-B51F-640BDF2FF32E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa8195p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D8DA4D12-7ABF-4A04-B44E-E1D68C8E58AB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B17DA06B-11F7-4FF4-99B2-640730651795",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3B8EA8B-65A9-4436-9118-AD0838CA468D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180xp_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "647A964A-37C7-403E-82EF-BE88A1E89CA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180xp:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "594AAEC3-ADCE-4448-9CED-462DA162F906",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda658_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "64C66310-250B-4D3A-A4BC-81BC4E39CD33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda658:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF57EDAC-03FD-41B9-BC13-ED1335FC3E7C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "067C0E1E-469C-43C3-B73A-9632C1E5D21A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "931D0055-A0C7-48FA-9F4E-0744B62C7CFC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda830_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9097ADB4-658C-4DC5-89C8-34D808799EB7",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda830:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E99C74C9-C7E7-4A63-A804-E99916423CFA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3294361E-8FCA-4CFB-B9EA-917BB374D8FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DC7EF791-678C-4A58-9129-EF731948C203",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm658_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0103A69-6F9E-40B9-BA44-430ADDD7656A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm658:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "42B27A64-B924-494A-9312-BD297103EB66",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm712_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9F51997-505C-4090-B146-C22DE8BD9E7B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm712:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CB63CBC4-57F8-486C-A2C8-6061B596ECBD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm830_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24B381CC-06B4-49C8-A30A-1072AA33238D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm830:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "23CE52D0-DD13-4743-BEA1-F9AD7ABA7839",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdpx55m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E44F9073-544F-4E9B-A5E2-B7CD4CEA26A5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdpx55m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F80A6FC3-F7CD-4440-9C50-1CB5B22D620B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "54D78593-B7C4-4598-A2B5-DCC3D73D6C89",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0D98D5DE-0E35-4F98-B748-0EFE65B351BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm4250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "52C376CE-BAE9-40DD-86B4-D548FE521DD3",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm4250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "97B16DE3-711D-4BEF-947B-5E9299EA3BF9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6125_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AE529BF7-0C9B-4B79-ABF8-54D5051F5E94",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6125:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "124227C1-DC7A-4A44-A513-C83976464BD3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "252C1977-CB0B-4E87-A419-0483A638D90E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50ACCEEC-C464-4873-A997-8366AA40B8C9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FACA2BF1-85D3-447F-A08D-B90330A22550",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C2ABA18D-82C1-4366-B1D7-DED42DD3D5C5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6250p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3FB2972-94B6-4716-BA96-4B452BA3990F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6250p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "57F4F872-094E-4E27-BB89-D8251FAFB713",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7125_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "055E464C-C63A-455E-97B0-0D8A266A428F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7125:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "527A0A00-0C6C-4937-87A3-00668CF7BACB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AB0B9D41-F28E-4095-9A33-B24AB939A063",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "80A48711-1DDF-4CC4-916D-CD44086EC7AB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A39DE400-ECBB-457C-AAE9-D473829DB424",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "240DA0AC-6AC3-48EF-AF50-4DA788035D7E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7250p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "76DB5472-DF51-4144-8A69-9B231CF782DA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7250p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D395018-251C-45AA-9EE8-A638CAB0B508",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "80CEB8B9-7296-451F-B3B8-1C68392F0996",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A3C851A-205F-42FC-88D2-58C613EDDD41",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2AC910FA-0AD1-460A-B333-57C99D4FC7BB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "34DFEB6B-7D74-4DEE-A263-49D9420DB126",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Buffer overflow in sahara protocol while processing commands leads to overwrite of secure configuration data in Snapdragon Mobile, Snapdragon Compute, Snapdragon Auto, Snapdragon IOT, Snapdragon Connectivity, Snapdragon Voice & Music",
      },
      {
         lang: "es",
         value: "Un desbordamiento del búfer en el protocolo sahara mientras son procesados comandos conlleva a una  escritura excesiva de datos de configuración seguros en Snapdragon Mobile, Snapdragon Compute, Snapdragon Auto, Snapdragon IOT, Snapdragon Connectivity, Snapdragon Voice & Music",
      },
   ],
   id: "CVE-2021-30327",
   lastModified: "2024-11-21T06:03:50.327",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "PHYSICAL",
               availabilityImpact: "LOW",
               baseScore: 7.5,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "CHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L",
               version: "3.1",
            },
            exploitabilityScore: 0.9,
            impactScore: 6,
            source: "product-security@qualcomm.com",
            type: "Secondary",
         },
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "PHYSICAL",
               availabilityImpact: "HIGH",
               baseScore: 6.8,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 0.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2022-06-14T10:15:14.593",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/april-2022-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-11-02 07:15
Modified
2024-11-21 05:31
Severity ?
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
u'While processing invalid connection request PDU which is nonstandard (interval or timeout is 0) from central device may lead peripheral system enter into dead lock state.(This CVE is equivalent to InvalidConnectionRequest(CVE-2019-19193) mentioned in sweyntooth paper)' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8017, APQ8053, AR9344, Bitra, IPQ5018, Kamorta, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9886, QCM6125, QCN7605, QCS404, QCS405, QCS605, QCS610, QRB5165, Rennell, SA415M, SA515M, Saipan, SC7180, SC8180X, SDA845, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm agatti_firmware -
qualcomm agatti -
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm ar9344_firmware -
qualcomm ar9344 -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm ipq5018_firmware -
qualcomm ipq5018 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6174a_firmware -
qualcomm qca6174a -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qca6574au_firmware -
qualcomm qca6574au -
qualcomm qca9377_firmware -
qualcomm qca9377 -
qualcomm qca9886_firmware -
qualcomm qca9886 -
qualcomm qcm6125_firmware -
qualcomm qcm6125 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm qrb5165_firmware -
qualcomm qrb5165 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:agatti_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "39E6366C-4356-4689-B1B6-762861CB1813",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:agatti:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37440A79-2D29-4747-981B-7D2C526FFBC7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ar9344_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "31EF9AB9-64DB-4A2E-B831-A9FE25F7EF7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ar9344:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "87B414A7-91DE-4A13-A01B-EF976849EC98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq5018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C84001E-B14B-4657-85E1-60FB0AD388AF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq5018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E84640A-6848-4C76-96FC-EA349801D440",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4FF653D0-15CF-4A10-8D8E-BE56F4DAB890",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C31FA74C-6659-4457-BC32-257624F43C66",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D527E2B1-2A46-4FBA-9F7A-F5543677C8FB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8374DDB3-D484-4141-AE0C-42333D2721F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C4D2B46E-3996-42FD-B932-09E92C02EC8A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "98E58C63-F253-4DCC-8A14-48FEB64B4C3D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9886_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "311229F9-4A32-462D-AE8D-E5E2B2C416CE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9886:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A523C3F-FB62-4728-8173-4C117C28AC5A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm6125_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AB226552-52D9-44F5-A170-35C44761A72B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm6125:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB16DC4-CDC9-4936-9C6A-0ED8E1F6D056",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qrb5165_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "89A1AAD0-9336-4657-8E1E-74E8F490C06E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qrb5165:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "386F2F37-974B-40F2-9B23-ABD49C60E32D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'While processing invalid connection request PDU which is nonstandard (interval or timeout is 0) from central device may lead peripheral system enter into dead lock state.(This CVE is equivalent to InvalidConnectionRequest(CVE-2019-19193) mentioned in sweyntooth paper)' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8017, APQ8053, AR9344, Bitra, IPQ5018, Kamorta, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9886, QCM6125, QCN7605, QCS404, QCS405, QCS605, QCS610, QRB5165, Rennell, SA415M, SA515M, Saipan, SC7180, SC8180X, SDA845, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Mientras se procesa una petición de conexión no válida, una PDU que no es estándar (intervalo o tiempo de espera es 0) de un dispositivo central puede conllevar a que un sistema periférico entre en un estado de bloqueo inactivo. (Este CVE es equivalente a InvalidConnectionRequest(CVE-2019-19193) mencionado en el documento sweyntooth) en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones Agatti, APQ8009, APQ8017, APQ8053, AR9344, Bitra, IPQ5018, Kamorta, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9886, QCM6125, QCN7605, QCS404, QCS405, QCS605, QCS610, QRB5165, Rennell, SA415M, SA515M, Saipan, SC7180, SC8180X, SDA845, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2020-3704",
   lastModified: "2024-11-21T05:31:36.630",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.8,
               confidentialityImpact: "NONE",
               integrityImpact: "NONE",
               vectorString: "AV:N/AC:L/Au:N/C:N/I:N/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 6.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 7.5,
               baseSeverity: "HIGH",
               confidentialityImpact: "NONE",
               integrityImpact: "NONE",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-11-02T07:15:15.327",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-667",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-04-16 11:15
Modified
2024-11-21 04:19
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
Side channel issue in QTEE due to usage of non-time-constant comparison function such as memcmp or strcmp in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8016_firmware -
qualcomm apq8016 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8076_firmware -
qualcomm apq8076 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9207c_firmware -
qualcomm mdm9207c -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8909w_firmware -
qualcomm msm8909w -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8016_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "81301BE5-3FA9-4053-97BC-11A9C10E196D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8016:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F6E79D48-F105-4D64-8C8F-88FE0345F5E1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8076_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9A4CAA77-CC4D-49CF-9696-6C2542B31415",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8076:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E19E8B60-4C5C-4D1C-B9F0-AB1FC1F58949",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9207c_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3CFA66A-CD2E-4670-A137-65E2C94C1A11",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9207c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE52FE99-DF0D-4C57-BB9C-0B853D1AF58B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FE28A59C-7AA6-4B85-84E8-07852B96108E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5DEE828B-09A7-4AC1-8134-491A7C87C118",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Side channel issue in QTEE due to usage of non-time-constant comparison function such as memcmp or strcmp in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un problema de canal lateral en QTEE debido al uso de una función de comparación sin constante de tiempo tal y como memcmp o strcmp en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8016, APQ8017, APQ8053, APQ8076, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-10483",
   lastModified: "2024-11-21T04:19:14.763",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 2.1,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 2.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "NONE",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-04-16T11:15:12.760",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-203",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-11-02 07:15
Modified
2024-11-21 04:57
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Array index underflow issue in adsp driver due to improper check of channel id before used as array index.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8953, MSM8996AU, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletinPatch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm agatti_firmware -
qualcomm agatti -
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm ipq4019_firmware -
qualcomm ipq4019 -
qualcomm ipq5018_firmware -
qualcomm ipq5018 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8064_firmware -
qualcomm ipq8064 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909w_firmware -
qualcomm msm8909w -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qca9531_firmware -
qualcomm qca9531 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sa8155p_firmware -
qualcomm sa8155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:agatti_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "39E6366C-4356-4689-B1B6-762861CB1813",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:agatti:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37440A79-2D29-4747-981B-7D2C526FFBC7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq4019_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94CB547F-0078-47CD-B511-06DE96882D5A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq4019:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AA679375-BB14-4B24-8AD9-B2BFBACE2FDB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq5018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C84001E-B14B-4657-85E1-60FB0AD388AF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq5018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E84640A-6848-4C76-96FC-EA349801D440",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8064_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A1CC1C1-F2CA-4C43-B9E9-1288C3496C7B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8064:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC82552A-9E7C-4A13-B7A5-43CEA218675C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FE28A59C-7AA6-4B85-84E8-07852B96108E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5DEE828B-09A7-4AC1-8134-491A7C87C118",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9531_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E71452E6-551F-4E93-9951-2582C60BDFCE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9531:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6D69FB0E-FDFF-42B8-ADAD-797B7C91E979",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C8648B38-2597-401A-8F53-D582FA911569",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A01CD59B-8F21-4CD6-8A1A-7B37547A8715",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Array index underflow issue in adsp driver due to improper check of channel id before used as array index.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8953, MSM8996AU, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un problema de subdesbordamiento del índice de matriz en el controlador adsp debido a una comprobación inapropiada del id de canal antes de usarse como índice de matriz en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones Agatti, APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8953, MSM8996AU, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2020-11174",
   lastModified: "2024-11-21T04:57:03.540",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-11-02T07:15:14.233",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-129",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-06-02 15:15
Modified
2024-11-21 04:25
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Improper permissions in XBL_SEC region enable user to update XBL_SEC code and data and divert the RAM dump path to normal cold boot path in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Improper permissions in XBL_SEC region enable user to update XBL_SEC code and data and divert the RAM dump path to normal cold boot path in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Los permisos inapropiados en la región XBL_SEC permiten al usuario actualizar el código y los datos de XBL_SEC y desviar la ruta de volcado de la RAM hacia la ruta de arranque en frío normal en los productos Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en las versiones Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14054",
   lastModified: "2024-11-21T04:25:59.637",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-06-02T15:15:10.993",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-Other",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-11-21 15:15
Modified
2024-11-21 04:40
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
Information disclosure due to lack of address range check done on the SysDBG buffers in SDI code. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, MDM9205, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, Snapdragon_High_Med_2016, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm snapdragon_high_med_2016_firmware -
qualcomm snapdragon_high_med_2016 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:snapdragon_high_med_2016_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "706B5BF5-3803-4D3C-8A3B-34D30D8B36F9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:snapdragon_high_med_2016:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C69745BA-DE6A-4646-959D-C45166559952",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Information disclosure due to lack of address range check done on the SysDBG buffers in SDI code. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, MDM9205, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, Snapdragon_High_Med_2016, SXR1130",
      },
      {
         lang: "es",
         value: "Una divulgación de información debido a una falta de comprobación del rango de direcciones realizada en los buffers SysDBG en el código SDI. En los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones APQ8009, APQ8017, APQ8053, MDM9205, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, Snapdragon_High_Med_2016, SXR1130.",
      },
   ],
   id: "CVE-2019-2295",
   lastModified: "2024-11-21T04:40:38.483",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 2.1,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 2.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "NONE",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-11-21T15:15:15.463",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-119",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 05:31
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'XBL SEC clears only ZI region when loading Qualcomm-signed segments can lead to improper access issue' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'XBL SEC clears only ZI region when loading Qualcomm-signed segments can lead to improper access issue' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8098, Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SXR1130",
      },
      {
         lang: "es",
         value: "XBL SEC borra solo la región ZI cuando la carga de segmentos firmados por Qualcomm puede generar un problema de acceso inapropiado en los productos Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en versiones APQ8098, Kamorta, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SXR1130.",
      },
   ],
   id: "CVE-2020-3611",
   lastModified: "2024-11-21T05:31:24.227",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:14.887",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-noinfo",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-11-02 07:15
Modified
2024-11-21 05:31
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'A buffer overflow could occur if the API is improperly used due to UIE init does not contain a buffer size a param' in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Agatti, Kamorta, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm agatti_firmware -
qualcomm agatti -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:agatti_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "39E6366C-4356-4689-B1B6-762861CB1813",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:agatti:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37440A79-2D29-4747-981B-7D2C526FFBC7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'A buffer overflow could occur if the API is improperly used due to UIE init does not contain a buffer size a param' in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Agatti, Kamorta, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SXR1130",
      },
      {
         lang: "es",
         value: "Un desbordamiento de búfer podría ocurrir si la API es usada inapropiadamente debido a que UIE init no contiene un param de un tamaño de búfer en los productos Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en versiones Agatti, Kamorta, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SXR1130",
      },
   ],
   id: "CVE-2020-3678",
   lastModified: "2024-11-21T05:31:33.650",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-11-02T07:15:14.670",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 05:31
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
u'Information disclosure issue occurs as in current logic Secure Touch session is released without terminating display session' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Information disclosure issue occurs as in current logic Secure Touch session is released without terminating display session' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un problema de divulgación de información ocurre ya que en la lógica actual, la sesión Secure Touch es liberada sin terminar la sesión de visualización en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2020-3644",
   lastModified: "2024-11-21T05:31:28.410",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 2.1,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 2.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "NONE",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:15.653",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-200",
            },
            {
               lang: "en",
               value: "CWE-404",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 05:31
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Channel name string which has been read from shared memory is potentially subjected to string manipulations but not validated for NULL termination can results into memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009 -
qualcomm apq8017 -
qualcomm apq8053 -
qualcomm apq8096au -
qualcomm apq8098 -
qualcomm bitra -
qualcomm ipq6018 -
qualcomm ipq8074 -
qualcomm kamorta -
qualcomm mdm9150 -
qualcomm mdm9205 -
qualcomm mdm9206 -
qualcomm mdm9607 -
qualcomm mdm9640 -
qualcomm mdm9645 -
qualcomm mdm9650 -
qualcomm mdm9655 -
qualcomm msm8905 -
qualcomm msm8909 -
qualcomm msm8917 -
qualcomm msm8920 -
qualcomm msm8937 -
qualcomm msm8940 -
qualcomm msm8953 -
qualcomm msm8996 -
qualcomm msm8996au -
qualcomm msm8998 -
qualcomm nicobar -
qualcomm qca8081 -
qualcomm qcm2150 -
qualcomm qcn7605 -
qualcomm qcs404 -
qualcomm qcs405 -
qualcomm qcs605 -
qualcomm qcs610 -
qualcomm qm215 -
qualcomm rennell -
qualcomm sa415m -
qualcomm sa6155p -
qualcomm saipan -
qualcomm sc7180 -
qualcomm sc8180x -
qualcomm sda660 -
qualcomm sda845 -
qualcomm sdm429 -
qualcomm sdm429w -
qualcomm sdm439 -
qualcomm sdm450 -
qualcomm sdm630 -
qualcomm sdm632 -
qualcomm sdm636 -
qualcomm sdm660 -
qualcomm sdm670 -
qualcomm sdm710 -
qualcomm sdm845 -
qualcomm sdm850 -
qualcomm sdx20 -
qualcomm sdx24 -
qualcomm sdx55 -
qualcomm sm6150 -
qualcomm sm7150 -
qualcomm sm8150 -
qualcomm sm8250 -
qualcomm sxr1130 -
qualcomm sxr2130 -
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9645_firmware -
qualcomm mdm9645 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9645:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1F8F856B-70D7-4A1A-8257-90AAAE62CD6F",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: true,
                  },
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9645_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "65E5C59A-ABCF-4F62-8C6D-ECDACDAA83C9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9645:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1F8F856B-70D7-4A1A-8257-90AAAE62CD6F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Channel name string which has been read from shared memory is potentially subjected to string manipulations but not validated for NULL termination can results into memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una cadena nombre de canal que ha sido leída de la memoria compartida está potencialmente sujeta a manipulaciones de cadenas pero no comprobada para la terminación NULL lo que puede resultar en una corrupción de la memoria en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2020-3622",
   lastModified: "2024-11-21T05:31:25.677",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:15.217",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-09-30 16:15
Modified
2024-11-21 04:19
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Possible buffer overflow issue due to lack of length check when parsing the extended cap IE header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA8081, QCA9379, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
Impacted products
Vendor Product Version
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm qca6174a_firmware -
qualcomm qca6174a -
qualcomm qca6574_firmware -
qualcomm qca6574 -
qualcomm qca6574au_firmware -
qualcomm qca6574au -
qualcomm qca6584_firmware -
qualcomm qca6584 -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qca9379_firmware -
qualcomm qca9379 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qualcomm_215_firmware -
qualcomm qualcomm_215 -
qualcomm sd_210_firmware -
qualcomm sd_210 -
qualcomm sd_212_firmware -
qualcomm sd_212 -
qualcomm sd_205_firmware -
qualcomm sd_205 -
qualcomm sd_425_firmware -
qualcomm sd_425 -
qualcomm sd_427_firmware -
qualcomm sd_427 -
qualcomm sd_430_firmware -
qualcomm sd_430 -
qualcomm sd_435_firmware -
qualcomm sd_435 -
qualcomm sd_439_firmware -
qualcomm sd_439 -
qualcomm sd_429_firmware -
qualcomm sd_429 -
qualcomm sd_450_firmware -
qualcomm sd_450 -
qualcomm sd_625_firmware -
qualcomm sd_625 -
qualcomm sd_632_firmware -
qualcomm sd_632 -
qualcomm sd_636_firmware -
qualcomm sd_636 -
qualcomm sd_665_firmware -
qualcomm sd_665 -
qualcomm sd_675_firmware -
qualcomm sd_675 -
qualcomm sd_712_firmware -
qualcomm sd_712 -
qualcomm sd_710_firmware -
qualcomm sd_710 -
qualcomm sd_670_firmware -
qualcomm sd_670 -
qualcomm sd_730_firmware -
qualcomm sd_730 -
qualcomm sd_820_firmware -
qualcomm sd_820 -
qualcomm sd_820a_firmware -
qualcomm sd_820a -
qualcomm sd_835_firmware -
qualcomm sd_835 -
qualcomm sd_845_firmware -
qualcomm sd_845 -
qualcomm sd_850_firmware -
qualcomm sd_850 -
qualcomm sd_855_firmware -
qualcomm sd_855 -
qualcomm sd_8cx_firmware -
qualcomm sd_8cx -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4FF653D0-15CF-4A10-8D8E-BE56F4DAB890",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C31FA74C-6659-4457-BC32-257624F43C66",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9B828AC8-4A01-4537-B2BD-8180C99F5C32",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "66C16E1E-9D4A-4F20-B697-833FDCCA86FB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D527E2B1-2A46-4FBA-9F7A-F5543677C8FB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8374DDB3-D484-4141-AE0C-42333D2721F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6584_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CFB656-804A-453C-A39B-1B08C0A16BB9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6584:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7F0C9ED5-27E3-48EC-9A05-862715EE2034",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9379_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "25565FDA-651D-4A05-8B1E-2188B6921253",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9379:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B8D49750-BBEA-4A3D-9898-28B7A50A7F42",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qualcomm_215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A039963-E922-4BD2-926F-FC935F5A74DF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qualcomm_215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1FC2372C-DE7A-449F-AEED-494EB6559566",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_210_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0FA80D57-3191-47CF-AD3F-9F2D64E443FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_210:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B2AFB212-F01A-4CEB-8DB4-2E0CC2308CB6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_212_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E0986EF1-0974-488E-84C4-6880F876CE55",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_212:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8C08BA58-2EBC-4A22-85A4-2ECD54693B9B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "27110478-4C08-49E6-BD53-8BAAD9D5BD65",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3664D302-D22A-4B25-B534-3097AE2F8573",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_425_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C56BC939-2FE8-4AB4-B638-35C83B224005",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_425:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E36C12E2-7064-41E6-B357-3F0E6E6D0A0F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_427_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8175FC2D-8B9C-4461-BEAE-E9C688E8A63B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_427:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "92CD09CE-75CC-418F-AB16-4685141BDE36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_430_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE5C66CC-B00C-4581-B8FB-0632232E480D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_430:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "87F57247-08CD-473E-A517-F9E85BFC7BEA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_435_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "55604764-FC96-451C-BB9B-9AD72EF5D245",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_435:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "71CEDACD-D22B-4CCD-93DA-B79CB74BDA22",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE3EA03-0373-4FEF-B1FC-123A8073520B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A64D3E69-0784-4DEA-96C1-2D41EAFA1906",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B11CE0F1-29BD-46E1-ACFE-D076192F138E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D205DB4E-68C2-4B13-8373-128870DF83D8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E07C621F-0BC0-40C1-9678-1AF6498AC487",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C621A62-E346-406B-9D20-8FF6C2B0851F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_625_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "06E0CC35-AC20-42D7-8FEA-CA4685E33E72",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_625:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4A2C4DED-2367-4736-A0AF-C8356F1271AD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F2126866-3B02-42B4-A57A-4EFF30848B55",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F832FE19-8D65-4779-B6F5-BD90BD131FD4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CE94E380-CB75-462E-B411-BF38F17D53B2",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0947F38F-3DC2-45F1-B3B3-963922F32054",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_665_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A00C8264-02FC-4191-A4D9-363A99627176",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_665:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "63D21FBC-976A-488A-A329-FBAEB8017C6D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_675_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3F900C8F-9763-441A-B97E-E5394A68A08A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_675:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "589C1001-E9F6-41A6-BCC8-A94A3C97F2E6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_712_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6BFF8872-645F-4A05-BAF9-7797CFBE37C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_712:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9CB91AFF-C149-4F5C-92EC-E78E66935528",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2B529780-DB0A-4F9C-AE63-6DEC593B86E5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "669E7360-E8C3-4BB8-A3B6-61BD58AFAF62",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49606C5-7306-4F33-864C-C1905594F09C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B43964AF-7CEC-420A-935B-D3895B2BAC70",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_730_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F5E6464-2341-40EC-B276-6CE49CF1DFDD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_730:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "73D9A6B7-2147-4992-ADC3-6A8DE3D3E0A5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E077FC03-F86F-417A-A3E6-BC88CB85C6F0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E016356C-94ED-4CDD-8351-97D265FE036E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E08016A2-E4FE-4E9C-A915-C66BE157AFB5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "018452D0-007C-4740-B2AF-E5C8BBAC310F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_835_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1CFF35A3-1472-4665-9DAB-1ABC45C0D5B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_835:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F930E9BF-C502-49C6-8BE8-9A711B89FA1B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0A2D2B3B-CB28-46AA-9117-A7FA371FDE80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE18BF66-B0DB-48BB-B43A-56F01821F5A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0C10C7CB-3B66-4F17-8146-6A85611E2BA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B9DA765F-53DE-4FB0-B825-6C11B3177641",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_855_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "91400943-3D25-4E44-9FFD-9E3076305D80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_855:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "57B16867-710D-4748-8636-635E2C6F7389",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_8cx_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A71D1A7C-537F-458B-BA56-A11F95E36EA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_8cx:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716DEC4D-D854-44CD-8A14-AA5AFD96809E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Possible buffer overflow issue due to lack of length check when parsing the extended cap IE header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA8081, QCA9379, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, SXR1130",
      },
      {
         lang: "es",
         value: "Un posible problema de desbordamiento del búfer debido a la falta de comprobación de longitud durante el análisis de la longitud del encabezado IE de límite extendido en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA8081, QCA9379, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, SXR1130.",
      },
   ],
   id: "CVE-2019-10539",
   lastModified: "2024-11-21T04:19:23.623",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-09-30T16:15:11.040",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-12-12 09:15
Modified
2024-11-21 04:40
Severity ?
7.1 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Summary
Crafted image that has a valid signature from a non-QC entity can be loaded which can read/write memory that belongs to the secure world in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Crafted image that has a valid signature from a non-QC entity can be loaded which can read/write memory that belongs to the secure world in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una imagen diseñada que tenga una firma válida de una entidad non-QC puede ser cargada para que pueda leer y escribir la memoria que pertenece al mundo seguro en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en las versiones MDM9205, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-2338",
   lastModified: "2024-11-21T04:40:44.863",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 3.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:N",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 4.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "NONE",
               baseScore: 7.1,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.2,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-12-12T09:15:13.300",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-noinfo",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-11-06 17:15
Modified
2024-11-21 04:40
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
While deserializing any key blob during key operations, buffer overflow could occur exposing partial key information if any key operations are invoked(Depends on CVE-2018-13907) in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
Impacted products
Vendor Product Version
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8909w_firmware -
qualcomm msm8909w -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qualcomm_215_firmware -
qualcomm qualcomm_215 -
qualcomm sd_210_firmware -
qualcomm sd_210 -
qualcomm sd_212_firmware -
qualcomm sd_212 -
qualcomm sd_205_firmware -
qualcomm sd_205 -
qualcomm sd_410_firmware -
qualcomm sd_410 -
qualcomm sd_412_firmware -
qualcomm sd_412 -
qualcomm sd_425_firmware -
qualcomm sd_425 -
qualcomm sd_427_firmware -
qualcomm sd_427 -
qualcomm sd_430_firmware -
qualcomm sd_430 -
qualcomm sd_435_firmware -
qualcomm sd_435 -
qualcomm sd_439_firmware -
qualcomm sd_439 -
qualcomm sd_429_firmware -
qualcomm sd_429 -
qualcomm sd_450_firmware -
qualcomm sd_450 -
qualcomm sd_625_firmware -
qualcomm sd_625 -
qualcomm sd_632_firmware -
qualcomm sd_632 -
qualcomm sd_636_firmware -
qualcomm sd_636 -
qualcomm sd_650_firmware -
qualcomm sd_650 -
qualcomm sd_652_firmware -
qualcomm sd_652 -
qualcomm sd_712_firmware -
qualcomm sd_712 -
qualcomm sd_710_firmware -
qualcomm sd_710 -
qualcomm sd_670_firmware -
qualcomm sd_670 -
qualcomm sd_820_firmware -
qualcomm sd_820 -
qualcomm sd_820a_firmware -
qualcomm sd_820a -
qualcomm sd_835_firmware -
qualcomm sd_835 -
qualcomm sd_845_firmware -
qualcomm sd_845 -
qualcomm sd_850_firmware -
qualcomm sd_850 -
qualcomm sd_855_firmware -
qualcomm sd_855 -
qualcomm sd_8cx_firmware -
qualcomm sd_8cx -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm snapdragon_high_med_2016_firmware -
qualcomm snapdragon_high_med_2016 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FE28A59C-7AA6-4B85-84E8-07852B96108E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5DEE828B-09A7-4AC1-8134-491A7C87C118",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qualcomm_215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A039963-E922-4BD2-926F-FC935F5A74DF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qualcomm_215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1FC2372C-DE7A-449F-AEED-494EB6559566",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_210_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0FA80D57-3191-47CF-AD3F-9F2D64E443FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_210:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B2AFB212-F01A-4CEB-8DB4-2E0CC2308CB6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_212_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E0986EF1-0974-488E-84C4-6880F876CE55",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_212:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8C08BA58-2EBC-4A22-85A4-2ECD54693B9B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "27110478-4C08-49E6-BD53-8BAAD9D5BD65",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3664D302-D22A-4B25-B534-3097AE2F8573",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_410_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F683C42D-A310-4369-9689-3DBC9288591E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_410:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0EADE10A-0F63-4149-8F03-030673D6D7CE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_412_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A78C9449-5EB0-459B-AA72-EFF00592C30A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_412:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2D583172-F1F1-4DF8-99CE-B94A84D14CCD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_425_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C56BC939-2FE8-4AB4-B638-35C83B224005",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_425:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E36C12E2-7064-41E6-B357-3F0E6E6D0A0F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_427_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8175FC2D-8B9C-4461-BEAE-E9C688E8A63B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_427:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "92CD09CE-75CC-418F-AB16-4685141BDE36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_430_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE5C66CC-B00C-4581-B8FB-0632232E480D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_430:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "87F57247-08CD-473E-A517-F9E85BFC7BEA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_435_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "55604764-FC96-451C-BB9B-9AD72EF5D245",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_435:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "71CEDACD-D22B-4CCD-93DA-B79CB74BDA22",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE3EA03-0373-4FEF-B1FC-123A8073520B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A64D3E69-0784-4DEA-96C1-2D41EAFA1906",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B11CE0F1-29BD-46E1-ACFE-D076192F138E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D205DB4E-68C2-4B13-8373-128870DF83D8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E07C621F-0BC0-40C1-9678-1AF6498AC487",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C621A62-E346-406B-9D20-8FF6C2B0851F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_625_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "06E0CC35-AC20-42D7-8FEA-CA4685E33E72",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_625:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4A2C4DED-2367-4736-A0AF-C8356F1271AD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F2126866-3B02-42B4-A57A-4EFF30848B55",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F832FE19-8D65-4779-B6F5-BD90BD131FD4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CE94E380-CB75-462E-B411-BF38F17D53B2",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0947F38F-3DC2-45F1-B3B3-963922F32054",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BC1650DB-FDF8-4BE5-9437-8ADA11A07116",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B51DD51F-4BDE-497B-89E5-551D10CF3442",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_652_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0752054B-2C29-4490-ADC8-29F82BAA17E6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_652:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "005038B5-BCB7-4A23-8562-ACEF6E156C1F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_712_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6BFF8872-645F-4A05-BAF9-7797CFBE37C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_712:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9CB91AFF-C149-4F5C-92EC-E78E66935528",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2B529780-DB0A-4F9C-AE63-6DEC593B86E5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "669E7360-E8C3-4BB8-A3B6-61BD58AFAF62",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49606C5-7306-4F33-864C-C1905594F09C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B43964AF-7CEC-420A-935B-D3895B2BAC70",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E077FC03-F86F-417A-A3E6-BC88CB85C6F0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E016356C-94ED-4CDD-8351-97D265FE036E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E08016A2-E4FE-4E9C-A915-C66BE157AFB5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "018452D0-007C-4740-B2AF-E5C8BBAC310F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_835_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1CFF35A3-1472-4665-9DAB-1ABC45C0D5B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_835:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F930E9BF-C502-49C6-8BE8-9A711B89FA1B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0A2D2B3B-CB28-46AA-9117-A7FA371FDE80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE18BF66-B0DB-48BB-B43A-56F01821F5A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0C10C7CB-3B66-4F17-8146-6A85611E2BA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B9DA765F-53DE-4FB0-B825-6C11B3177641",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_855_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "91400943-3D25-4E44-9FFD-9E3076305D80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_855:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "57B16867-710D-4748-8636-635E2C6F7389",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_8cx_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A71D1A7C-537F-458B-BA56-A11F95E36EA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_8cx:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716DEC4D-D854-44CD-8A14-AA5AFD96809E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:snapdragon_high_med_2016_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "706B5BF5-3803-4D3C-8A3B-34D30D8B36F9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:snapdragon_high_med_2016:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C69745BA-DE6A-4646-959D-C45166559952",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "While deserializing any key blob during key operations, buffer overflow could occur exposing partial key information if any key operations are invoked(Depends on CVE-2018-13907) in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130",
      },
      {
         lang: "es",
         value: "Mientras se deserializa cualquier blob de teclas durante las operaciones de clave, puede presentarse un desbordamiento de búfer que expone información de clave parcial si cualquier operación clave es invocada  (depende de el CVE-2018-13907) en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en las versiones MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.",
      },
   ],
   id: "CVE-2019-2275",
   lastModified: "2024-11-21T04:40:35.850",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 2.1,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 2.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "NONE",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-11-06T17:15:13.410",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-119",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 05:31
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Out of bound writes happen when accessing usage_table header entry beyond the memory allocated for the header' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Out of bound writes happen when accessing usage_table header entry beyond the memory allocated for the header' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
      },
      {
         lang: "es",
         value: "Una escritura fuera de límites ocurre cuando se accede a un encabezado usage_table más allá de la memoria asignada para el encabezado en los productos  Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en versiones Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130.",
      },
   ],
   id: "CVE-2020-3636",
   lastModified: "2024-11-21T05:31:27.343",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:15.403",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-Other",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:25
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Lack of check for integer overflow for round up and addition operations result into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9645_firmware -
qualcomm mdm9645 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9645_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "65E5C59A-ABCF-4F62-8C6D-ECDACDAA83C9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9645:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1F8F856B-70D7-4A1A-8257-90AAAE62CD6F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Lack of check for integer overflow for round up and addition operations result into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una falta de comprobación del desbordamiento de enteros para operaciones de redondeo y suma resulta en una corrupción de la memoria y un potencial filtrado de información en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-13999",
   lastModified: "2024-11-21T04:25:51.797",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:12.577",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-190",
            },
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-04-16 11:15
Modified
2024-11-21 04:26
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Possible buffer overflow while handling NAN reception of NMF in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, Rennell, SC7180, SC8180X, SM6150, SM7150, SM8150, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Possible buffer overflow while handling NAN reception of NMF in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, Rennell, SC7180, SC8180X, SM6150, SM7150, SM8150, SXR2130",
      },
      {
         lang: "es",
         value: "Un posible desbordamiento del búfer mientras se maneja la recepción NAN de NMF en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones IPQ6018, IPQ8074, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, Rennell, SC7180, SC8180X, SM6150, SM7150, SM8150, SXR2130",
      },
   ],
   id: "CVE-2019-14111",
   lastModified: "2024-11-21T04:26:06.440",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-04-16T11:15:15.073",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-07-30 12:15
Modified
2024-11-21 04:26
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Memory corruption can occurs in trusted application if offset size from HLOS is more than actual mapped buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/july-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Memory corruption can occurs in trusted application if offset size from HLOS is more than actual mapped buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
      },
      {
         lang: "es",
         value: "Una corrupción de la memoria puede presentarse en una aplicación confiable si el tamaño del desplazamiento de HLOS es mayor que el tamaño real del búfer asignado en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en versiones Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130",
      },
   ],
   id: "CVE-2019-14130",
   lastModified: "2024-11-21T04:26:08.210",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-07-30T12:15:11.770",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-119",
            },
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 05:31
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
u'Potential integer underflow while parsing Service Info and IPv6 link-local TLVs that comes as part of NDPE attribute' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ5018, IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCN7605, QCS404, QCS405, Rennell, SA415M, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link, Vendor Advisory
Impacted products
Vendor Product Version
qualcomm ipq5018_firmware -
qualcomm ipq5018 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq5018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C84001E-B14B-4657-85E1-60FB0AD388AF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq5018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E84640A-6848-4C76-96FC-EA349801D440",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Potential integer underflow while parsing Service Info and IPv6 link-local TLVs that comes as part of NDPE attribute' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ5018, IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCN7605, QCS404, QCS405, Rennell, SA415M, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250",
      },
      {
         lang: "es",
         value: "Un potencial subdesbordamiento de enteros mientras se analiza Service Info y los TLV locales de enlace IPv6 que vienen como parte del atributo NDPE en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones IPQ5018, IPQ6018, IPQ8074, Kamorta, Nicobar, QCA6390, QCN7605, QCS404, QCS405, Rennell, SA415M, Saipan, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250.",
      },
   ],
   id: "CVE-2020-3675",
   lastModified: "2024-11-21T05:31:33.350",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:16.247",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-191",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:25
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Lack of check that the TX FIFO write and read indices that are read from shared RAM are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9645_firmware -
qualcomm mdm9645 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9645_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "65E5C59A-ABCF-4F62-8C6D-ECDACDAA83C9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9645:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1F8F856B-70D7-4A1A-8257-90AAAE62CD6F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Lack of check that the TX FIFO write and read indices that are read from shared RAM are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una falta de comprobación de que los índices de escritura y lectura TX FIFO que son leídos desde la RAM compartida sean menores que el tamaño de FIFO resulta en una corrupción de la memoria y un potencial filtrado de información en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-13998",
   lastModified: "2024-11-21T04:25:51.630",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:12.513",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-190",
            },
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:19
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Improper authentication and signature verification of debug polices in secure boot loader will allow unverified debug policies to be loaded into secure memory and leads to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ6018, Kamorta, MSM8998, Nicobar, QCS404, QCS605, QCS610, Rennell, SA415M, SA6155P, SC7180, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Improper authentication and signature verification of debug polices in secure boot loader will allow unverified debug policies to be loaded into secure memory and leads to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ6018, Kamorta, MSM8998, Nicobar, QCS404, QCS605, QCS610, Rennell, SA415M, SA6155P, SC7180, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una autenticación inapropiada y una verificación de firma de las políticas de depuración en el cargador de arranque seguro permitirán a unas políticas de depuración no comprobadas cargarse en la memoria segura y conllevar a una corrupción de la memoria en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en versiones IPQ6018, Kamorta, MSM8998, Nicobar, QCS404, QCS605, QCS610, Rennell, SA415M, SA6155P, SC7180, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-10562",
   lastModified: "2024-11-21T04:19:27.603",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:12.123",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-287",
            },
            {
               lang: "en",
               value: "CWE-347",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-04-16 11:15
Modified
2024-11-21 04:25
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
Due to the use of non-time-constant comparison functions there is issue in timing side channels which can be used as a potential side channel for SUI corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Due to the use of non-time-constant comparison functions there is issue in timing side channels which can be used as a potential side channel for SUI corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Debido al uso de funciones de comparación sin constante de tiempo, hay un problema en los canales laterales de tiempo que pueden ser usados como un potencial canal lateral para la corrupción de SUI en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, Rennell, SA6155P, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14007",
   lastModified: "2024-11-21T04:25:53.003",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 4.9,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:N/A:N",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "NONE",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-04-16T11:15:14.260",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-203",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-07-25 17:15
Modified
2024-11-21 04:40
Severity ?
5.5 (Medium) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
Sanity checks are missing in layout which can lead to SUI Corruption or can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, Snapdragon_High_Med_2016, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
Impacted products
Vendor Product Version
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9635m_firmware -
qualcomm mdm9635m -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qualcomm_215_firmware -
qualcomm qualcomm_215 -
qualcomm sd_210_firmware -
qualcomm sd_210 -
qualcomm sd_212_firmware -
qualcomm sd_212 -
qualcomm sd_205_firmware -
qualcomm sd_205 -
qualcomm sd_410_firmware -
qualcomm sd_410 -
qualcomm sd_412_firmware -
qualcomm sd_412 -
qualcomm sd_425_firmware -
qualcomm sd_425 -
qualcomm sd_427_firmware -
qualcomm sd_427 -
qualcomm sd_430_firmware -
qualcomm sd_430 -
qualcomm sd_435_firmware -
qualcomm sd_435 -
qualcomm sd_439_firmware -
qualcomm sd_439 -
qualcomm sd_429_firmware -
qualcomm sd_429 -
qualcomm sd_450_firmware -
qualcomm sd_450 -
qualcomm sd_615_firmware -
qualcomm sd_615 -
qualcomm sd_616_firmware -
qualcomm sd_616 -
qualcomm sd_415_firmware -
qualcomm sd_415 -
qualcomm sd_625_firmware -
qualcomm sd_625 -
qualcomm sd_632_firmware -
qualcomm sd_632 -
qualcomm sd_636_firmware -
qualcomm sd_636 -
qualcomm sd_650_firmware -
qualcomm sd_650 -
qualcomm sd_652_firmware -
qualcomm sd_652 -
qualcomm sd_675_firmware -
qualcomm sd_675 -
qualcomm sd_712_firmware -
qualcomm sd_712 -
qualcomm sd_710_firmware -
qualcomm sd_710 -
qualcomm sd_670_firmware -
qualcomm sd_670 -
qualcomm sd_730_firmware -
qualcomm sd_730 -
qualcomm sd_820_firmware -
qualcomm sd_820 -
qualcomm sd_820a_firmware -
qualcomm sd_820a -
qualcomm sd_835_firmware -
qualcomm sd_835 -
qualcomm sd_845_firmware -
qualcomm sd_845 -
qualcomm sd_850_firmware -
qualcomm sd_850 -
qualcomm sd_8cx_firmware -
qualcomm sd_8cx -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm snapdragon_high_med_2016_firmware -
qualcomm snapdragon_high_med_2016 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9635m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9EF77DD1-BE11-4132-9889-646196FAE567",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9635m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CB323C15-2018-4CB8-858E-56F088B03FBB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qualcomm_215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A039963-E922-4BD2-926F-FC935F5A74DF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qualcomm_215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1FC2372C-DE7A-449F-AEED-494EB6559566",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_210_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0FA80D57-3191-47CF-AD3F-9F2D64E443FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_210:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B2AFB212-F01A-4CEB-8DB4-2E0CC2308CB6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_212_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E0986EF1-0974-488E-84C4-6880F876CE55",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_212:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8C08BA58-2EBC-4A22-85A4-2ECD54693B9B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "27110478-4C08-49E6-BD53-8BAAD9D5BD65",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3664D302-D22A-4B25-B534-3097AE2F8573",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_410_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F683C42D-A310-4369-9689-3DBC9288591E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_410:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0EADE10A-0F63-4149-8F03-030673D6D7CE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_412_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A78C9449-5EB0-459B-AA72-EFF00592C30A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_412:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2D583172-F1F1-4DF8-99CE-B94A84D14CCD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_425_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C56BC939-2FE8-4AB4-B638-35C83B224005",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_425:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E36C12E2-7064-41E6-B357-3F0E6E6D0A0F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_427_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8175FC2D-8B9C-4461-BEAE-E9C688E8A63B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_427:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "92CD09CE-75CC-418F-AB16-4685141BDE36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_430_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE5C66CC-B00C-4581-B8FB-0632232E480D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_430:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "87F57247-08CD-473E-A517-F9E85BFC7BEA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_435_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "55604764-FC96-451C-BB9B-9AD72EF5D245",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_435:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "71CEDACD-D22B-4CCD-93DA-B79CB74BDA22",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE3EA03-0373-4FEF-B1FC-123A8073520B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A64D3E69-0784-4DEA-96C1-2D41EAFA1906",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B11CE0F1-29BD-46E1-ACFE-D076192F138E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D205DB4E-68C2-4B13-8373-128870DF83D8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E07C621F-0BC0-40C1-9678-1AF6498AC487",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C621A62-E346-406B-9D20-8FF6C2B0851F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_615_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "549E6F7E-A54F-423F-BD4A-A8FB97DBD39E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_615:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "992C3835-7183-4D96-8647-DD9916880323",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_616_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7B95CCC-37F1-4768-8D64-CA2028E93E03",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_616:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D1426161-4F7C-44B1-AA9E-EA661AA68947",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_415_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECF81213-DE2D-4C4B-99E8-71AFD87E92CD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_415:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95E826EF-343B-47FA-AB54-F13E868CE6A7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_625_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "06E0CC35-AC20-42D7-8FEA-CA4685E33E72",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_625:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4A2C4DED-2367-4736-A0AF-C8356F1271AD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F2126866-3B02-42B4-A57A-4EFF30848B55",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F832FE19-8D65-4779-B6F5-BD90BD131FD4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CE94E380-CB75-462E-B411-BF38F17D53B2",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0947F38F-3DC2-45F1-B3B3-963922F32054",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BC1650DB-FDF8-4BE5-9437-8ADA11A07116",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B51DD51F-4BDE-497B-89E5-551D10CF3442",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_652_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0752054B-2C29-4490-ADC8-29F82BAA17E6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_652:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "005038B5-BCB7-4A23-8562-ACEF6E156C1F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_675_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3F900C8F-9763-441A-B97E-E5394A68A08A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_675:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "589C1001-E9F6-41A6-BCC8-A94A3C97F2E6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_712_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6BFF8872-645F-4A05-BAF9-7797CFBE37C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_712:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9CB91AFF-C149-4F5C-92EC-E78E66935528",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2B529780-DB0A-4F9C-AE63-6DEC593B86E5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "669E7360-E8C3-4BB8-A3B6-61BD58AFAF62",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49606C5-7306-4F33-864C-C1905594F09C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B43964AF-7CEC-420A-935B-D3895B2BAC70",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_730_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F5E6464-2341-40EC-B276-6CE49CF1DFDD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_730:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "73D9A6B7-2147-4992-ADC3-6A8DE3D3E0A5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E077FC03-F86F-417A-A3E6-BC88CB85C6F0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E016356C-94ED-4CDD-8351-97D265FE036E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E08016A2-E4FE-4E9C-A915-C66BE157AFB5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "018452D0-007C-4740-B2AF-E5C8BBAC310F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_835_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1CFF35A3-1472-4665-9DAB-1ABC45C0D5B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_835:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F930E9BF-C502-49C6-8BE8-9A711B89FA1B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0A2D2B3B-CB28-46AA-9117-A7FA371FDE80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE18BF66-B0DB-48BB-B43A-56F01821F5A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0C10C7CB-3B66-4F17-8146-6A85611E2BA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B9DA765F-53DE-4FB0-B825-6C11B3177641",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_8cx_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A71D1A7C-537F-458B-BA56-A11F95E36EA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_8cx:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716DEC4D-D854-44CD-8A14-AA5AFD96809E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:snapdragon_high_med_2016_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "706B5BF5-3803-4D3C-8A3B-34D30D8B36F9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:snapdragon_high_med_2016:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C69745BA-DE6A-4646-959D-C45166559952",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Sanity checks are missing in layout which can lead to SUI Corruption or can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, Snapdragon_High_Med_2016, SXR1130",
      },
      {
         lang: "es",
         value: "En el diseño faltan las comprobaciones de control que pueden llevar a la corrupción de SUI o la Denegación de Servicio en Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, Snapdragon_High_Med_2016, SXR1130.",
      },
   ],
   id: "CVE-2019-2239",
   lastModified: "2024-11-21T04:40:30.490",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 2.1,
               confidentialityImpact: "NONE",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:N/I:N/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 2.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV30: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "NONE",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
               version: "3.0",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-07-25T17:15:12.223",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-129",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-11-02 07:15
Modified
2024-11-21 05:31
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'An Unaligned address or size can propagate to the database due to improper page permissions and can lead to improper access control' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Agatti, Bitra, Kamorta, QCA6390, QCS404, QCS610, Rennell, SA515M, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm agatti_firmware -
qualcomm agatti -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:agatti_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "39E6366C-4356-4689-B1B6-762861CB1813",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:agatti:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37440A79-2D29-4747-981B-7D2C526FFBC7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'An Unaligned address or size can propagate to the database due to improper page permissions and can lead to improper access control' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Agatti, Bitra, Kamorta, QCA6390, QCS404, QCS610, Rennell, SA515M, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
      },
      {
         lang: "es",
         value: "Una dirección o tamaño no alineado puede propagarse a la base de datos debido a permisos de página inapropiados y puede conllevar a un control de acceso inapropiado en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en versiones Agatti, Bitra, Kamorta, QCA6390, QCS404, QCS610, Rennell, SA515M, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
      },
   ],
   id: "CVE-2020-3638",
   lastModified: "2024-11-21T05:31:27.470",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-11-02T07:15:14.327",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-noinfo",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-01-21 07:15
Modified
2024-11-21 04:40
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Locked regions may be modified through other interfaces in secure boot loader image due to improper access control. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Locked regions may be modified through other interfaces in secure boot loader image due to improper access control. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Las regiones bloqueadas pueden ser modificadas por medio de otras interfaces en la imagen del cargador de arranque seguro debido a un control de acceso inapropiado. En los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking en las versiones  MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-2267",
   lastModified: "2024-11-21T04:40:34.723",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-01-21T07:15:12.993",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/january-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-Other",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:25
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Lack of check that the current received data fragment size of a particular packet that are read from shared memory are less than the actual packet size can lead to memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9645_firmware -
qualcomm mdm9645 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9645_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "65E5C59A-ABCF-4F62-8C6D-ECDACDAA83C9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9645:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1F8F856B-70D7-4A1A-8257-90AAAE62CD6F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Lack of check that the current received data fragment size of a particular packet that are read from shared memory are less than the actual packet size can lead to memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una falta de comprobación de que el tamaño del fragmento de datos recibidos actuales de un paquete en particular que son leídos desde la memoria compartida sean menores que el tamaño real del paquete lo que puede conllevar a una corrupción de la memoria y un potencial filtrado de información en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-13994",
   lastModified: "2024-11-21T04:25:51.260",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:12.403",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-190",
            },
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-07-22 14:15
Modified
2024-11-21 03:48
Severity ?
7.8 (High) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
XBL_SEC image authentication and other crypto related validations are accessible to a compromised OEM XBL Loader due to missing lock at XBL_SEC stage.. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
Impacted products
Vendor Product Version
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qualcomm_215_firmware -
qualcomm qualcomm_215 -
qualcomm sd_410_firmware -
qualcomm sd_410 -
qualcomm sd_412_firmware -
qualcomm sd_412 -
qualcomm sd_425_firmware -
qualcomm sd_425 -
qualcomm sd_427_firmware -
qualcomm sd_427 -
qualcomm sd_430_firmware -
qualcomm sd_430 -
qualcomm sd_435_firmware -
qualcomm sd_435 -
qualcomm sd_439_firmware -
qualcomm sd_439 -
qualcomm sd_429_firmware -
qualcomm sd_429 -
qualcomm sd_450_firmware -
qualcomm sd_450 -
qualcomm sd_625_firmware -
qualcomm sd_625 -
qualcomm sd_632_firmware -
qualcomm sd_632 -
qualcomm sd_636_firmware -
qualcomm sd_636 -
qualcomm sd_712_firmware -
qualcomm sd_712 -
qualcomm sd_710_firmware -
qualcomm sd_710 -
qualcomm sd_670_firmware -
qualcomm sd_670 -
qualcomm sd_820_firmware -
qualcomm sd_820 -
qualcomm sd_820a_firmware -
qualcomm sd_820a -
qualcomm sd_835_firmware -
qualcomm sd_835 -
qualcomm sd_845_firmware -
qualcomm sd_845 -
qualcomm sd_850_firmware -
qualcomm sd_850 -
qualcomm sd_855_firmware -
qualcomm sd_855 -
qualcomm sd_8cx_firmware -
qualcomm sd_8cx -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm snapdragon_high_med_2016_firmware -
qualcomm snapdragon_high_med_2016 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qualcomm_215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A039963-E922-4BD2-926F-FC935F5A74DF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qualcomm_215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1FC2372C-DE7A-449F-AEED-494EB6559566",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_410_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F683C42D-A310-4369-9689-3DBC9288591E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_410:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0EADE10A-0F63-4149-8F03-030673D6D7CE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_412_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A78C9449-5EB0-459B-AA72-EFF00592C30A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_412:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2D583172-F1F1-4DF8-99CE-B94A84D14CCD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_425_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C56BC939-2FE8-4AB4-B638-35C83B224005",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_425:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E36C12E2-7064-41E6-B357-3F0E6E6D0A0F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_427_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8175FC2D-8B9C-4461-BEAE-E9C688E8A63B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_427:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "92CD09CE-75CC-418F-AB16-4685141BDE36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_430_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE5C66CC-B00C-4581-B8FB-0632232E480D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_430:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "87F57247-08CD-473E-A517-F9E85BFC7BEA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_435_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "55604764-FC96-451C-BB9B-9AD72EF5D245",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_435:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "71CEDACD-D22B-4CCD-93DA-B79CB74BDA22",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE3EA03-0373-4FEF-B1FC-123A8073520B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A64D3E69-0784-4DEA-96C1-2D41EAFA1906",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B11CE0F1-29BD-46E1-ACFE-D076192F138E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D205DB4E-68C2-4B13-8373-128870DF83D8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E07C621F-0BC0-40C1-9678-1AF6498AC487",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C621A62-E346-406B-9D20-8FF6C2B0851F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_625_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "06E0CC35-AC20-42D7-8FEA-CA4685E33E72",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_625:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4A2C4DED-2367-4736-A0AF-C8356F1271AD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F2126866-3B02-42B4-A57A-4EFF30848B55",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F832FE19-8D65-4779-B6F5-BD90BD131FD4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CE94E380-CB75-462E-B411-BF38F17D53B2",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0947F38F-3DC2-45F1-B3B3-963922F32054",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_712_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6BFF8872-645F-4A05-BAF9-7797CFBE37C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_712:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9CB91AFF-C149-4F5C-92EC-E78E66935528",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2B529780-DB0A-4F9C-AE63-6DEC593B86E5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "669E7360-E8C3-4BB8-A3B6-61BD58AFAF62",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49606C5-7306-4F33-864C-C1905594F09C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B43964AF-7CEC-420A-935B-D3895B2BAC70",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E077FC03-F86F-417A-A3E6-BC88CB85C6F0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E016356C-94ED-4CDD-8351-97D265FE036E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E08016A2-E4FE-4E9C-A915-C66BE157AFB5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "018452D0-007C-4740-B2AF-E5C8BBAC310F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_835_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1CFF35A3-1472-4665-9DAB-1ABC45C0D5B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_835:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F930E9BF-C502-49C6-8BE8-9A711B89FA1B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0A2D2B3B-CB28-46AA-9117-A7FA371FDE80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE18BF66-B0DB-48BB-B43A-56F01821F5A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0C10C7CB-3B66-4F17-8146-6A85611E2BA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B9DA765F-53DE-4FB0-B825-6C11B3177641",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_855_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "91400943-3D25-4E44-9FFD-9E3076305D80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_855:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "57B16867-710D-4748-8636-635E2C6F7389",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_8cx_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A71D1A7C-537F-458B-BA56-A11F95E36EA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_8cx:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716DEC4D-D854-44CD-8A14-AA5AFD96809E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:snapdragon_high_med_2016_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "706B5BF5-3803-4D3C-8A3B-34D30D8B36F9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:snapdragon_high_med_2016:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C69745BA-DE6A-4646-959D-C45166559952",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "XBL_SEC image authentication and other crypto related validations are accessible to a compromised OEM XBL Loader due to missing lock at XBL_SEC stage.. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130",
      },
      {
         lang: "es",
         value: "La autenticación de imagen XBL_SEC puede ser accedida y otras comprobaciones relacionadas con criptografía en un Cargador OEM XBL comprometido debido a la falta de bloqueo en la etapa XBL_SEC.. en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.",
      },
   ],
   id: "CVE-2018-13896",
   lastModified: "2024-11-21T03:48:16.137",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV30: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.0",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-07-22T14:15:11.080",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-284",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-03-05 09:15
Modified
2024-11-21 04:25
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
A stack-based buffer overflow exists in the initialization of the identification stage due to lack of check on the number of templates provided. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8096, APQ8096AU, MDM9205, MSM8996, MSM8996AU, Nicobar, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "A stack-based buffer overflow exists in the initialization of the identification stage due to lack of check on the number of templates provided. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8096, APQ8096AU, MDM9205, MSM8996, MSM8996AU, Nicobar, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Se presenta un desbordamiento del búfer en la región stack de la memoria en la inicialización de la etapa de identificación debido a la falta de comprobación del número de plantillas proporcionadas. En los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones APQ8096, APQ8096AU, MDM9205, MSM8996, MSM8996AU, Nicobar, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14015",
   lastModified: "2024-11-21T04:25:54.117",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-03-05T09:15:16.577",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-03-05 09:15
Modified
2024-11-21 04:25
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Buffer overwrite during memcpy due to lack of check on SSID length validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8064_firmware -
qualcomm apq8064 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9207c_firmware -
qualcomm mdm9207c -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca4531_firmware -
qualcomm qca4531 -
qualcomm qca6174a_firmware -
qualcomm qca6174a -
qualcomm qca6564_firmware -
qualcomm qca6564 -
qualcomm qca6574_firmware -
qualcomm qca6574 -
qualcomm qca6574au_firmware -
qualcomm qca6574au -
qualcomm qca6584_firmware -
qualcomm qca6584 -
qualcomm qca6584au_firmware -
qualcomm qca6584au -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qca9377_firmware -
qualcomm qca9377 -
qualcomm qca9379_firmware -
qualcomm qca9379 -
qualcomm qca9886_firmware -
qualcomm qca9886 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8064_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "349F2550-D3FE-4C31-A4F1-E1E44D6054AC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8064:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6C7BF553-4EAC-455D-9743-9C359CAA65E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9207c_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3CFA66A-CD2E-4670-A137-65E2C94C1A11",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9207c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE52FE99-DF0D-4C57-BB9C-0B853D1AF58B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca4531_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A13DB5D-38AC-4E50-A279-130AF24256E0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca4531:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "90A67611-CA55-4039-B4B5-AB87CD6CEA17",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4FF653D0-15CF-4A10-8D8E-BE56F4DAB890",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C31FA74C-6659-4457-BC32-257624F43C66",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6564_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00FE294D-4BE0-4436-9273-507E760884EC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6564:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "424CB795-58E5-43A4-A2EC-C563D93C5E72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9B828AC8-4A01-4537-B2BD-8180C99F5C32",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "66C16E1E-9D4A-4F20-B697-833FDCCA86FB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D527E2B1-2A46-4FBA-9F7A-F5543677C8FB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8374DDB3-D484-4141-AE0C-42333D2721F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6584_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CFB656-804A-453C-A39B-1B08C0A16BB9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6584:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7F0C9ED5-27E3-48EC-9A05-862715EE2034",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C3DDA896-576C-44B8-85B6-F71F473F776B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6584au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "51A87BDA-5B24-4212-BAB3-D2BBB2F4162E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C4D2B46E-3996-42FD-B932-09E92C02EC8A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "98E58C63-F253-4DCC-8A14-48FEB64B4C3D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9379_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "25565FDA-651D-4A05-8B1E-2188B6921253",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9379:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B8D49750-BBEA-4A3D-9898-28B7A50A7F42",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9886_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "311229F9-4A32-462D-AE8D-E5E2B2C416CE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9886:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A523C3F-FB62-4728-8173-4C117C28AC5A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Buffer overwrite during memcpy due to lack of check on SSID length validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una sobreescritura del búfer durante una memcpy debido a la falta de verificación sobre la comprobación de la longitud del SSID en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14028",
   lastModified: "2024-11-21T04:25:56.070",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-03-05T09:15:16.767",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:26
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Keymaster attestation key and device IDs provisioning which is a one time process is incorrectly allowed to be re-provisioned after a user data erase or a factory reset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, Nicobar, QCS404, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Keymaster attestation key and device IDs provisioning which is a one time process is incorrectly allowed to be re-provisioned after a user data erase or a factory reset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, Nicobar, QCS404, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
      },
      {
         lang: "es",
         value: "Un aprovisionamiento de claves de atestación y ID de dispositivos de Keymaster, que es un proceso único, es incorrectamente permitido para volver a ser provisionado después de borrar los datos del usuario o restablecer los valores de fábrica en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones Kamorta, Nicobar, QCS404, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
      },
   ],
   id: "CVE-2019-14089",
   lastModified: "2024-11-21T04:26:04.190",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:12.967",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-327",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-07-22 14:15
Modified
2024-11-21 03:48
Severity ?
9.8 (Critical) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Lack of check to prevent the buffer length taking negative values can lead to stack overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9150, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA6174A, QCA8081, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
Impacted products
Vendor Product Version
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9615_firmware -
qualcomm mdm9615 -
qualcomm mdm9625_firmware -
qualcomm mdm9625 -
qualcomm mdm9635m_firmware -
qualcomm mdm9635m -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8909w_firmware -
qualcomm msm8909w -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm qca6174a_firmware -
qualcomm qca6174a -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qualcomm_215_firmware -
qualcomm qualcomm_215 -
qualcomm sd_210_firmware -
qualcomm sd_210 -
qualcomm sd_212_firmware -
qualcomm sd_212 -
qualcomm sd_205_firmware -
qualcomm sd_205 -
qualcomm sd_425_firmware -
qualcomm sd_425 -
qualcomm sd_427_firmware -
qualcomm sd_427 -
qualcomm sd_430_firmware -
qualcomm sd_430 -
qualcomm sd_435_firmware -
qualcomm sd_435 -
qualcomm sd_439_firmware -
qualcomm sd_439 -
qualcomm sd_429_firmware -
qualcomm sd_429 -
qualcomm sd_450_firmware -
qualcomm sd_450 -
qualcomm sd_615_firmware -
qualcomm sd_615 -
qualcomm sd_616_firmware -
qualcomm sd_616 -
qualcomm sd_415_firmware -
qualcomm sd_415 -
qualcomm sd_625_firmware -
qualcomm sd_625 -
qualcomm sd_632_firmware -
qualcomm sd_632 -
qualcomm sd_636_firmware -
qualcomm sd_636 -
qualcomm sd_650_firmware -
qualcomm sd_650 -
qualcomm sd_652_firmware -
qualcomm sd_652 -
qualcomm sd_665_firmware -
qualcomm sd_665 -
qualcomm sd_675_firmware -
qualcomm sd_675 -
qualcomm sd_712_firmware -
qualcomm sd_712 -
qualcomm sd_710_firmware -
qualcomm sd_710 -
qualcomm sd_670_firmware -
qualcomm sd_670 -
qualcomm sd_730_firmware -
qualcomm sd_730 -
qualcomm sd_820_firmware -
qualcomm sd_820 -
qualcomm sd_820a_firmware -
qualcomm sd_820a -
qualcomm sd_835_firmware -
qualcomm sd_835 -
qualcomm sd_845_firmware -
qualcomm sd_845 -
qualcomm sd_850_firmware -
qualcomm sd_850 -
qualcomm sd_855_firmware -
qualcomm sd_855 -
qualcomm sd_8cx_firmware -
qualcomm sd_8cx -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm snapdragon_high_med_2016_firmware -
qualcomm snapdragon_high_med_2016 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9615_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "71E28EA6-0683-4755-8ABB-7F37DA810E4F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9615:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4DF4D4E-CDAA-42BB-802E-2722E7F3DBC2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9625_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "93AE9CA0-59C4-4C7E-8D5E-E0226117C45A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9625:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "467A5C4D-9909-44B5-9D1B-B746902FF094",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9635m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9EF77DD1-BE11-4132-9889-646196FAE567",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9635m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CB323C15-2018-4CB8-858E-56F088B03FBB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FE28A59C-7AA6-4B85-84E8-07852B96108E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5DEE828B-09A7-4AC1-8134-491A7C87C118",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4FF653D0-15CF-4A10-8D8E-BE56F4DAB890",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C31FA74C-6659-4457-BC32-257624F43C66",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qualcomm_215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A039963-E922-4BD2-926F-FC935F5A74DF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qualcomm_215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1FC2372C-DE7A-449F-AEED-494EB6559566",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_210_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0FA80D57-3191-47CF-AD3F-9F2D64E443FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_210:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B2AFB212-F01A-4CEB-8DB4-2E0CC2308CB6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_212_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E0986EF1-0974-488E-84C4-6880F876CE55",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_212:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8C08BA58-2EBC-4A22-85A4-2ECD54693B9B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "27110478-4C08-49E6-BD53-8BAAD9D5BD65",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3664D302-D22A-4B25-B534-3097AE2F8573",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_425_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C56BC939-2FE8-4AB4-B638-35C83B224005",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_425:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E36C12E2-7064-41E6-B357-3F0E6E6D0A0F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_427_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8175FC2D-8B9C-4461-BEAE-E9C688E8A63B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_427:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "92CD09CE-75CC-418F-AB16-4685141BDE36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_430_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE5C66CC-B00C-4581-B8FB-0632232E480D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_430:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "87F57247-08CD-473E-A517-F9E85BFC7BEA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_435_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "55604764-FC96-451C-BB9B-9AD72EF5D245",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_435:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "71CEDACD-D22B-4CCD-93DA-B79CB74BDA22",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE3EA03-0373-4FEF-B1FC-123A8073520B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A64D3E69-0784-4DEA-96C1-2D41EAFA1906",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B11CE0F1-29BD-46E1-ACFE-D076192F138E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D205DB4E-68C2-4B13-8373-128870DF83D8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E07C621F-0BC0-40C1-9678-1AF6498AC487",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C621A62-E346-406B-9D20-8FF6C2B0851F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_615_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "549E6F7E-A54F-423F-BD4A-A8FB97DBD39E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_615:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "992C3835-7183-4D96-8647-DD9916880323",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_616_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7B95CCC-37F1-4768-8D64-CA2028E93E03",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_616:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D1426161-4F7C-44B1-AA9E-EA661AA68947",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_415_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECF81213-DE2D-4C4B-99E8-71AFD87E92CD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_415:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95E826EF-343B-47FA-AB54-F13E868CE6A7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_625_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "06E0CC35-AC20-42D7-8FEA-CA4685E33E72",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_625:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4A2C4DED-2367-4736-A0AF-C8356F1271AD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F2126866-3B02-42B4-A57A-4EFF30848B55",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F832FE19-8D65-4779-B6F5-BD90BD131FD4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CE94E380-CB75-462E-B411-BF38F17D53B2",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0947F38F-3DC2-45F1-B3B3-963922F32054",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BC1650DB-FDF8-4BE5-9437-8ADA11A07116",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B51DD51F-4BDE-497B-89E5-551D10CF3442",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_652_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0752054B-2C29-4490-ADC8-29F82BAA17E6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_652:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "005038B5-BCB7-4A23-8562-ACEF6E156C1F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_665_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A00C8264-02FC-4191-A4D9-363A99627176",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_665:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "63D21FBC-976A-488A-A329-FBAEB8017C6D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_675_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3F900C8F-9763-441A-B97E-E5394A68A08A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_675:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "589C1001-E9F6-41A6-BCC8-A94A3C97F2E6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_712_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6BFF8872-645F-4A05-BAF9-7797CFBE37C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_712:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9CB91AFF-C149-4F5C-92EC-E78E66935528",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2B529780-DB0A-4F9C-AE63-6DEC593B86E5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "669E7360-E8C3-4BB8-A3B6-61BD58AFAF62",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49606C5-7306-4F33-864C-C1905594F09C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B43964AF-7CEC-420A-935B-D3895B2BAC70",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_730_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F5E6464-2341-40EC-B276-6CE49CF1DFDD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_730:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "73D9A6B7-2147-4992-ADC3-6A8DE3D3E0A5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E077FC03-F86F-417A-A3E6-BC88CB85C6F0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E016356C-94ED-4CDD-8351-97D265FE036E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E08016A2-E4FE-4E9C-A915-C66BE157AFB5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "018452D0-007C-4740-B2AF-E5C8BBAC310F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_835_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1CFF35A3-1472-4665-9DAB-1ABC45C0D5B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_835:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F930E9BF-C502-49C6-8BE8-9A711B89FA1B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0A2D2B3B-CB28-46AA-9117-A7FA371FDE80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE18BF66-B0DB-48BB-B43A-56F01821F5A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0C10C7CB-3B66-4F17-8146-6A85611E2BA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B9DA765F-53DE-4FB0-B825-6C11B3177641",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_855_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "91400943-3D25-4E44-9FFD-9E3076305D80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_855:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "57B16867-710D-4748-8636-635E2C6F7389",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_8cx_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A71D1A7C-537F-458B-BA56-A11F95E36EA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_8cx:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716DEC4D-D854-44CD-8A14-AA5AFD96809E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:snapdragon_high_med_2016_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "706B5BF5-3803-4D3C-8A3B-34D30D8B36F9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:snapdragon_high_med_2016:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C69745BA-DE6A-4646-959D-C45166559952",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Lack of check to prevent the buffer length taking negative values can lead to stack overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9150, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA6174A, QCA8081, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130",
      },
      {
         lang: "es",
         value: "La falta de comprobación para impedir que la longitud del búfer tome valores negativos puede conllevar a un desbordamiento de la pila. en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en las versiones IPQ8074, MDM9150, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA6174A, QCA8081, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130.",
      },
   ],
   id: "CVE-2018-13924",
   lastModified: "2024-11-21T03:48:20.723",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV30: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-07-22T14:15:11.223",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-11-21 15:15
Modified
2024-11-21 03:48
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Out-of-bounds memory access in Qurt kernel function when using the identifier to access Qurt kernel buffer to retrieve thread data. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8976, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM8150, SM8250, Snapdragon_High_Med_2016, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9635m_firmware -
qualcomm mdm9635m -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8909w_firmware -
qualcomm msm8909w -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8976_firmware -
qualcomm msm8976 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm snapdragon_high_med_2016_firmware -
qualcomm snapdragon_high_med_2016 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9635m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9EF77DD1-BE11-4132-9889-646196FAE567",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9635m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CB323C15-2018-4CB8-858E-56F088B03FBB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FE28A59C-7AA6-4B85-84E8-07852B96108E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5DEE828B-09A7-4AC1-8134-491A7C87C118",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8976_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED6D7455-A154-4BAD-BAD1-1EFCB2F28599",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8976:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E8FF0C6-C7C9-425D-B1C8-90658629EC69",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:snapdragon_high_med_2016_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "706B5BF5-3803-4D3C-8A3B-34D30D8B36F9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:snapdragon_high_med_2016:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C69745BA-DE6A-4646-959D-C45166559952",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Out-of-bounds memory access in Qurt kernel function when using the identifier to access Qurt kernel buffer to retrieve thread data. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8976, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM8150, SM8250, Snapdragon_High_Med_2016, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un acceso a memoria fuera de los límites en la función Qurt del kernel cuando se utiliza el identificador para acceder al búfer del kernel de Qurt para recuperar datos de hilos o subprocesos. En los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en las versiones APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8976, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM8150, SM8250, Snapdragon_High_Med_2016, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2018-13916",
   lastModified: "2024-11-21T03:48:19.990",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-11-21T15:15:12.370",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-06-22 07:15
Modified
2024-11-21 04:26
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Buffer overflow occurs while processing an subsample data length out of range due to lack of user input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/june-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Buffer overflow occurs while processing an subsample data length out of range due to lack of user input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un desbordamiento del búfer se presenta al procesar una longitud de datos de submuestra fuera del rango debido a una falta de comprobación de entrada del usuario en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-14076",
   lastModified: "2024-11-21T04:26:02.527",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-06-22T07:15:11.523",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/june-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-06-02 15:15
Modified
2024-11-21 04:25
Severity ?
7.1 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Summary
Out of bound read in Fingerprint application due to requested data is being used without length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9150, MDM9205, MDM9650, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Out of bound read in Fingerprint application due to requested data is being used without length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9150, MDM9205, MDM9650, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una lectura fuera de límite en la aplicación Fingerprint debido a que los datos solicitados están siendo utilizados sin comprobación de la longitud en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones Kamorta, MDM9150, MDM9205, MDM9650, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SA6155P, SC7180, SC8180X, SDA660, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14043",
   lastModified: "2024-11-21T04:25:58.130",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 3.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 4.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.1,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.2,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-06-02T15:15:10.867",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/may-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-125",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:26
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
u'Information disclosure issue occurs as in current logic as secure touch is released without clearing the display session which can result in user reading the secure input while touch is in non-secure domain as secure display is active' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8076_firmware -
qualcomm apq8076 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8076_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9A4CAA77-CC4D-49CF-9696-6C2542B31415",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8076:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E19E8B60-4C5C-4D1C-B9F0-AB1FC1F58949",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Information disclosure issue occurs as in current logic as secure touch is released without clearing the display session which can result in user reading the secure input while touch is in non-secure domain as secure display is active' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un problema de divulgación de información ocurre ya que en la lógica actual, como el toque seguro es liberado sin borrar la sesión de visualización, lo que puede resultar en que un usuario lea la entrada segura mientras el toque está en un dominio no seguro ya que la visualización segura está activa en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-14115",
   lastModified: "2024-11-21T04:26:07.050",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 2.1,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 2.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "NONE",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:13.043",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-459",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:26
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Pointer double free in HavenSvc due to not setting the pointer to NULL after freeing it' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Pointer double free in HavenSvc due to not setting the pointer to NULL after freeing it' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una doble liberación de puntero en HavenSvc debido a que no establece el puntero en NULL después de liberarlo en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure y Networking en versiones APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA515M, SA680A, SC680, SDM60, SD680A, SC680 SD680 SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-14065",
   lastModified: "2024-11-21T04:26:00.913",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:12.827",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-415",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-07-25 17:15
Modified
2024-11-21 04:40
Severity ?
7.8 (High) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Firmware is getting into loop of overwriting memory when scan command is given from host because of improper validation. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, QCA8081, QCS404, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
Impacted products
Vendor Product Version
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm sd_425_firmware -
qualcomm sd_425 -
qualcomm sd_427_firmware -
qualcomm sd_427 -
qualcomm sd_430_firmware -
qualcomm sd_430 -
qualcomm sd_435_firmware -
qualcomm sd_435 -
qualcomm sd_450_firmware -
qualcomm sd_450 -
qualcomm sd_625_firmware -
qualcomm sd_625 -
qualcomm sd_636_firmware -
qualcomm sd_636 -
qualcomm sd_712_firmware -
qualcomm sd_712 -
qualcomm sd_710_firmware -
qualcomm sd_710 -
qualcomm sd_670_firmware -
qualcomm sd_670 -
qualcomm sd_820_firmware -
qualcomm sd_820 -
qualcomm sd_835_firmware -
qualcomm sd_835 -
qualcomm sd_845_firmware -
qualcomm sd_845 -
qualcomm sd_850_firmware -
qualcomm sd_850 -
qualcomm sd_855_firmware -
qualcomm sd_855 -
qualcomm sd_8cx_firmware -
qualcomm sd_8cx -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm660_firmware -
qualcomm sdm660 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_425_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C56BC939-2FE8-4AB4-B638-35C83B224005",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_425:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E36C12E2-7064-41E6-B357-3F0E6E6D0A0F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_427_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8175FC2D-8B9C-4461-BEAE-E9C688E8A63B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_427:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "92CD09CE-75CC-418F-AB16-4685141BDE36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_430_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE5C66CC-B00C-4581-B8FB-0632232E480D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_430:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "87F57247-08CD-473E-A517-F9E85BFC7BEA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_435_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "55604764-FC96-451C-BB9B-9AD72EF5D245",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_435:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "71CEDACD-D22B-4CCD-93DA-B79CB74BDA22",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E07C621F-0BC0-40C1-9678-1AF6498AC487",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C621A62-E346-406B-9D20-8FF6C2B0851F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_625_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "06E0CC35-AC20-42D7-8FEA-CA4685E33E72",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_625:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4A2C4DED-2367-4736-A0AF-C8356F1271AD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CE94E380-CB75-462E-B411-BF38F17D53B2",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0947F38F-3DC2-45F1-B3B3-963922F32054",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_712_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6BFF8872-645F-4A05-BAF9-7797CFBE37C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_712:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9CB91AFF-C149-4F5C-92EC-E78E66935528",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2B529780-DB0A-4F9C-AE63-6DEC593B86E5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "669E7360-E8C3-4BB8-A3B6-61BD58AFAF62",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49606C5-7306-4F33-864C-C1905594F09C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B43964AF-7CEC-420A-935B-D3895B2BAC70",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E077FC03-F86F-417A-A3E6-BC88CB85C6F0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E016356C-94ED-4CDD-8351-97D265FE036E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_835_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1CFF35A3-1472-4665-9DAB-1ABC45C0D5B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_835:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F930E9BF-C502-49C6-8BE8-9A711B89FA1B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0A2D2B3B-CB28-46AA-9117-A7FA371FDE80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE18BF66-B0DB-48BB-B43A-56F01821F5A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0C10C7CB-3B66-4F17-8146-6A85611E2BA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B9DA765F-53DE-4FB0-B825-6C11B3177641",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_855_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "91400943-3D25-4E44-9FFD-9E3076305D80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_855:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "57B16867-710D-4748-8636-635E2C6F7389",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_8cx_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A71D1A7C-537F-458B-BA56-A11F95E36EA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_8cx:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716DEC4D-D854-44CD-8A14-AA5AFD96809E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Firmware is getting into loop of overwriting memory when scan command is given from host because of improper validation. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, QCA8081, QCS404, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660",
      },
      {
         lang: "es",
         value: "El firmware se está metiendo en el bucle de la memoria de sobrescritura cuando el comando de escaneo se proporciona desde el host debido a una validación incorrecta en Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, QCA8081, QCS404, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660.",
      },
   ],
   id: "CVE-2019-2346",
   lastModified: "2024-11-21T04:40:45.683",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV30: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.0",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-07-25T17:15:14.237",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-129",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-07-25 17:15
Modified
2024-11-21 04:40
Severity ?
7.8 (High) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Buffer overflow occurs when emulated RPMB is used due to sector size assumptions in the TA rollback protection logic. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
Impacted products
Vendor Product Version
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm mdm9655_firmware -
qualcomm mdm9655 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qualcomm_215_firmware -
qualcomm qualcomm_215 -
qualcomm sd_410_firmware -
qualcomm sd_410 -
qualcomm sd_412_firmware -
qualcomm sd_412 -
qualcomm sd_425_firmware -
qualcomm sd_425 -
qualcomm sd_427_firmware -
qualcomm sd_427 -
qualcomm sd_430_firmware -
qualcomm sd_430 -
qualcomm sd_435_firmware -
qualcomm sd_435 -
qualcomm sd_439_firmware -
qualcomm sd_439 -
qualcomm sd_429_firmware -
qualcomm sd_429 -
qualcomm sd_450_firmware -
qualcomm sd_450 -
qualcomm sd_625_firmware -
qualcomm sd_625 -
qualcomm sd_632_firmware -
qualcomm sd_632 -
qualcomm sd_636_firmware -
qualcomm sd_636 -
qualcomm sd_712_firmware -
qualcomm sd_712 -
qualcomm sd_710_firmware -
qualcomm sd_710 -
qualcomm sd_670_firmware -
qualcomm sd_670 -
qualcomm sd_820_firmware -
qualcomm sd_820 -
qualcomm sd_820a_firmware -
qualcomm sd_820a -
qualcomm sd_835_firmware -
qualcomm sd_835 -
qualcomm sd_845_firmware -
qualcomm sd_845 -
qualcomm sd_850_firmware -
qualcomm sd_850 -
qualcomm sd_8cx_firmware -
qualcomm sd_8cx -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm snapdragon_high_med_2016_firmware -
qualcomm snapdragon_high_med_2016 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7AFDBF8-D08A-4C98-B4A4-A4C7049DD05F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "520B217E-C02B-493D-8C11-E155E50357B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qualcomm_215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A039963-E922-4BD2-926F-FC935F5A74DF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qualcomm_215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1FC2372C-DE7A-449F-AEED-494EB6559566",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_410_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F683C42D-A310-4369-9689-3DBC9288591E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_410:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0EADE10A-0F63-4149-8F03-030673D6D7CE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_412_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A78C9449-5EB0-459B-AA72-EFF00592C30A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_412:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2D583172-F1F1-4DF8-99CE-B94A84D14CCD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_425_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C56BC939-2FE8-4AB4-B638-35C83B224005",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_425:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E36C12E2-7064-41E6-B357-3F0E6E6D0A0F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_427_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8175FC2D-8B9C-4461-BEAE-E9C688E8A63B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_427:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "92CD09CE-75CC-418F-AB16-4685141BDE36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_430_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE5C66CC-B00C-4581-B8FB-0632232E480D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_430:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "87F57247-08CD-473E-A517-F9E85BFC7BEA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_435_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "55604764-FC96-451C-BB9B-9AD72EF5D245",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_435:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "71CEDACD-D22B-4CCD-93DA-B79CB74BDA22",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE3EA03-0373-4FEF-B1FC-123A8073520B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A64D3E69-0784-4DEA-96C1-2D41EAFA1906",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B11CE0F1-29BD-46E1-ACFE-D076192F138E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D205DB4E-68C2-4B13-8373-128870DF83D8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E07C621F-0BC0-40C1-9678-1AF6498AC487",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C621A62-E346-406B-9D20-8FF6C2B0851F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_625_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "06E0CC35-AC20-42D7-8FEA-CA4685E33E72",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_625:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4A2C4DED-2367-4736-A0AF-C8356F1271AD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F2126866-3B02-42B4-A57A-4EFF30848B55",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F832FE19-8D65-4779-B6F5-BD90BD131FD4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CE94E380-CB75-462E-B411-BF38F17D53B2",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0947F38F-3DC2-45F1-B3B3-963922F32054",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_712_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6BFF8872-645F-4A05-BAF9-7797CFBE37C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_712:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9CB91AFF-C149-4F5C-92EC-E78E66935528",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2B529780-DB0A-4F9C-AE63-6DEC593B86E5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "669E7360-E8C3-4BB8-A3B6-61BD58AFAF62",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49606C5-7306-4F33-864C-C1905594F09C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B43964AF-7CEC-420A-935B-D3895B2BAC70",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E077FC03-F86F-417A-A3E6-BC88CB85C6F0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E016356C-94ED-4CDD-8351-97D265FE036E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E08016A2-E4FE-4E9C-A915-C66BE157AFB5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "018452D0-007C-4740-B2AF-E5C8BBAC310F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_835_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1CFF35A3-1472-4665-9DAB-1ABC45C0D5B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_835:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F930E9BF-C502-49C6-8BE8-9A711B89FA1B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0A2D2B3B-CB28-46AA-9117-A7FA371FDE80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE18BF66-B0DB-48BB-B43A-56F01821F5A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0C10C7CB-3B66-4F17-8146-6A85611E2BA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B9DA765F-53DE-4FB0-B825-6C11B3177641",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_8cx_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A71D1A7C-537F-458B-BA56-A11F95E36EA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_8cx:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716DEC4D-D854-44CD-8A14-AA5AFD96809E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:snapdragon_high_med_2016_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "706B5BF5-3803-4D3C-8A3B-34D30D8B36F9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:snapdragon_high_med_2016:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C69745BA-DE6A-4646-959D-C45166559952",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Buffer overflow occurs when emulated RPMB is used due to sector size assumptions in the TA rollback protection logic. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130",
      },
      {
         lang: "es",
         value: "Un desbordamiento de búfer ocurre cuando es utilizado RPMB emulado debido a suposiciones de tamaño de sector en la lógica de protección rollback de TA. En los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130.",
      },
   ],
   id: "CVE-2019-2235",
   lastModified: "2024-11-21T04:40:29.873",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV30: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.0",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-07-25T17:15:11.940",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-119",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-11-02 07:15
Modified
2024-11-21 04:56
Severity ?
8.1 (High) - CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Summary
u'Buffer over-read issue in Bluetooth estack due to lack of check for invalid length of L2cap packet received from peer device.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in QCA6390, QCN7605, QCS404, SA415M, SA515M, SC8180X, SDX55, SM8250
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm8250_firmware -
qualcomm sm8250 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Buffer over-read issue in Bluetooth estack due to lack of check for invalid length of L2cap packet received from peer device.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in QCA6390, QCN7605, QCS404, SA415M, SA515M, SC8180X, SDX55, SM8250",
      },
      {
         lang: "es",
         value: "Un problema de lectura excesiva del búfer en la pila del Bluetooth debido a una falta de comprobación de la longitud no válida del paquete L2cap recibido desde el dispositivo peer en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones QCA6390, QCN7605, QCS404, SA415M, SA515M, SC8180X, SDX55, SM8250",
      },
   ],
   id: "CVE-2020-11156",
   lastModified: "2024-11-21T04:56:57.347",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "ADJACENT_NETWORK",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.8,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "NONE",
               vectorString: "AV:A/AC:L/Au:N/C:P/I:N/A:P",
               version: "2.0",
            },
            exploitabilityScore: 6.5,
            impactScore: 4.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "ADJACENT_NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 8.1,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
               version: "3.1",
            },
            exploitabilityScore: 2.8,
            impactScore: 5.2,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-11-02T07:15:13.733",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-20",
            },
            {
               lang: "en",
               value: "CWE-125",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-04-16 11:15
Modified
2024-11-21 04:26
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Buffer overflow can occur in function wlan firmware while copying association frame content if frame length is more than the maximum buffer size in case of SAP mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8064_firmware -
qualcomm apq8064 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9207c_firmware -
qualcomm mdm9207c -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca4531_firmware -
qualcomm qca4531 -
qualcomm qca6174a_firmware -
qualcomm qca6174a -
qualcomm qca6564_firmware -
qualcomm qca6564 -
qualcomm qca6574au_firmware -
qualcomm qca6574au -
qualcomm qca6584_firmware -
qualcomm qca6584 -
qualcomm qca6584au_firmware -
qualcomm qca6584au -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qca9377_firmware -
qualcomm qca9377 -
qualcomm qca9379_firmware -
qualcomm qca9379 -
qualcomm qca9886_firmware -
qualcomm qca9886 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8064_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "349F2550-D3FE-4C31-A4F1-E1E44D6054AC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8064:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6C7BF553-4EAC-455D-9743-9C359CAA65E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9207c_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3CFA66A-CD2E-4670-A137-65E2C94C1A11",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9207c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE52FE99-DF0D-4C57-BB9C-0B853D1AF58B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca4531_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A13DB5D-38AC-4E50-A279-130AF24256E0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca4531:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "90A67611-CA55-4039-B4B5-AB87CD6CEA17",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4FF653D0-15CF-4A10-8D8E-BE56F4DAB890",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C31FA74C-6659-4457-BC32-257624F43C66",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6564_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00FE294D-4BE0-4436-9273-507E760884EC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6564:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "424CB795-58E5-43A4-A2EC-C563D93C5E72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D527E2B1-2A46-4FBA-9F7A-F5543677C8FB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8374DDB3-D484-4141-AE0C-42333D2721F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6584_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CFB656-804A-453C-A39B-1B08C0A16BB9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6584:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7F0C9ED5-27E3-48EC-9A05-862715EE2034",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C3DDA896-576C-44B8-85B6-F71F473F776B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6584au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "51A87BDA-5B24-4212-BAB3-D2BBB2F4162E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C4D2B46E-3996-42FD-B932-09E92C02EC8A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "98E58C63-F253-4DCC-8A14-48FEB64B4C3D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9379_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "25565FDA-651D-4A05-8B1E-2188B6921253",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9379:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B8D49750-BBEA-4A3D-9898-28B7A50A7F42",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9886_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "311229F9-4A32-462D-AE8D-E5E2B2C416CE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9886:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A523C3F-FB62-4728-8173-4C117C28AC5A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Buffer overflow can occur in function wlan firmware while copying association frame content if frame length is more than the maximum buffer size in case of SAP mode in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un desbordamiento del búfer puede ocurrir en el firmware de la función wlan mientras se copia el contenido de la trama de asociación si la longitud de la trama es superior al tamaño máximo del búfer en el caso del modo SAP en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8064, APQ8096, APQ8096AU, APQ8098, IPQ6018, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA4531, QCA6174A, QCA6564, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9886, QCN7605, QCS404, QCS405, QCS605, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-14110",
   lastModified: "2024-11-21T04:26:06.273",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-04-16T11:15:15.027",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-09-30 16:15
Modified
2024-11-21 04:19
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Buffer overflow in WLAN NAN function due to lack of check of count value received in NAN availability attribute in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, MSM8996AU, QCA6174A, QCA6574AU, QCA8081, QCA9377, QCA9379, QCS404, QCS405, QCS605, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletinsVendor Advisory
Impacted products
Vendor Product Version
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm qca6174a_firmware -
qualcomm qca6174a -
qualcomm qca6574au_firmware -
qualcomm qca6574au -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qca9377_firmware -
qualcomm qca9377 -
qualcomm qca9379_firmware -
qualcomm qca9379 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm sd_636_firmware -
qualcomm sd_636 -
qualcomm sd_665_firmware -
qualcomm sd_665 -
qualcomm sd_675_firmware -
qualcomm sd_675 -
qualcomm sd_712_firmware -
qualcomm sd_712 -
qualcomm sd_710_firmware -
qualcomm sd_710 -
qualcomm sd_670_firmware -
qualcomm sd_670 -
qualcomm sd_730_firmware -
qualcomm sd_730 -
qualcomm sd_820_firmware -
qualcomm sd_820 -
qualcomm sd_835_firmware -
qualcomm sd_835 -
qualcomm sd_845_firmware -
qualcomm sd_845 -
qualcomm sd_850_firmware -
qualcomm sd_850 -
qualcomm sd_855_firmware -
qualcomm sd_855 -
qualcomm sd_8cx_firmware -
qualcomm sd_8cx -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4FF653D0-15CF-4A10-8D8E-BE56F4DAB890",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C31FA74C-6659-4457-BC32-257624F43C66",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D527E2B1-2A46-4FBA-9F7A-F5543677C8FB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8374DDB3-D484-4141-AE0C-42333D2721F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C4D2B46E-3996-42FD-B932-09E92C02EC8A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "98E58C63-F253-4DCC-8A14-48FEB64B4C3D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9379_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "25565FDA-651D-4A05-8B1E-2188B6921253",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9379:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B8D49750-BBEA-4A3D-9898-28B7A50A7F42",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CE94E380-CB75-462E-B411-BF38F17D53B2",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0947F38F-3DC2-45F1-B3B3-963922F32054",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_665_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A00C8264-02FC-4191-A4D9-363A99627176",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_665:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "63D21FBC-976A-488A-A329-FBAEB8017C6D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_675_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "3F900C8F-9763-441A-B97E-E5394A68A08A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_675:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "589C1001-E9F6-41A6-BCC8-A94A3C97F2E6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_712_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6BFF8872-645F-4A05-BAF9-7797CFBE37C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_712:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9CB91AFF-C149-4F5C-92EC-E78E66935528",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2B529780-DB0A-4F9C-AE63-6DEC593B86E5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "669E7360-E8C3-4BB8-A3B6-61BD58AFAF62",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49606C5-7306-4F33-864C-C1905594F09C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B43964AF-7CEC-420A-935B-D3895B2BAC70",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_730_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F5E6464-2341-40EC-B276-6CE49CF1DFDD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_730:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "73D9A6B7-2147-4992-ADC3-6A8DE3D3E0A5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_820_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E077FC03-F86F-417A-A3E6-BC88CB85C6F0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_820:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E016356C-94ED-4CDD-8351-97D265FE036E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_835_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1CFF35A3-1472-4665-9DAB-1ABC45C0D5B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_835:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F930E9BF-C502-49C6-8BE8-9A711B89FA1B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0A2D2B3B-CB28-46AA-9117-A7FA371FDE80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE18BF66-B0DB-48BB-B43A-56F01821F5A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0C10C7CB-3B66-4F17-8146-6A85611E2BA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B9DA765F-53DE-4FB0-B825-6C11B3177641",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_855_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "91400943-3D25-4E44-9FFD-9E3076305D80",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_855:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "57B16867-710D-4748-8636-635E2C6F7389",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sd_8cx_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A71D1A7C-537F-458B-BA56-A11F95E36EA9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sd_8cx:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716DEC4D-D854-44CD-8A14-AA5AFD96809E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Buffer overflow in WLAN NAN function due to lack of check of count value received in NAN availability attribute in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, MSM8996AU, QCA6174A, QCA6574AU, QCA8081, QCA9377, QCA9379, QCS404, QCS405, QCS605, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130",
      },
      {
         lang: "es",
         value: "Un desbordamiento de búfer en la función WLAN NAN debido a la falta de comprobación del valor de conteo recibido en el atributo de disponibilidad NAN en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones IPQ8074, MSM8996AU, QCA6174A, QCA6574AU, QCA8081, QCA9377, QCA9379, QCS404, QCS405, QCS605, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130.",
      },
   ],
   id: "CVE-2019-10540",
   lastModified: "2024-11-21T04:19:24.490",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 10,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 9.8,
               baseSeverity: "CRITICAL",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-09-30T16:15:11.103",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-11-02 07:15
Modified
2024-11-21 04:56
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Out of bound access can happen in MHI command process due to lack of check of channel id value received from MHI devices' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9150, MDM9607, MDM9650, MSM8905, MSM8917, MSM8953, Nicobar, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM660, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletinPatch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm agatti_firmware -
qualcomm agatti -
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm ipq4019_firmware -
qualcomm ipq4019 -
qualcomm ipq5018_firmware -
qualcomm ipq5018 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8064_firmware -
qualcomm ipq8064 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qca9531_firmware -
qualcomm qca9531 -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm qrb5165_firmware -
qualcomm qrb5165 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sa8155p_firmware -
qualcomm sa8155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:agatti_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "39E6366C-4356-4689-B1B6-762861CB1813",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:agatti:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37440A79-2D29-4747-981B-7D2C526FFBC7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq4019_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94CB547F-0078-47CD-B511-06DE96882D5A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq4019:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AA679375-BB14-4B24-8AD9-B2BFBACE2FDB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq5018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C84001E-B14B-4657-85E1-60FB0AD388AF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq5018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E84640A-6848-4C76-96FC-EA349801D440",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8064_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A1CC1C1-F2CA-4C43-B9E9-1288C3496C7B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8064:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC82552A-9E7C-4A13-B7A5-43CEA218675C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9531_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E71452E6-551F-4E93-9951-2582C60BDFCE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9531:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6D69FB0E-FDFF-42B8-ADAD-797B7C91E979",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qrb5165_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "89A1AAD0-9336-4657-8E1E-74E8F490C06E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qrb5165:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "386F2F37-974B-40F2-9B23-ABD49C60E32D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C8648B38-2597-401A-8F53-D582FA911569",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A01CD59B-8F21-4CD6-8A1A-7B37547A8715",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Out of bound access can happen in MHI command process due to lack of check of channel id value received from MHI devices' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9150, MDM9607, MDM9650, MSM8905, MSM8917, MSM8953, Nicobar, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM660, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un acceso fuera de límite puede ocurrir en el proceso del comando MHI debido a una falta de comprobación del valor de id del canal recibido desde los dispositivos MHI en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9150, MDM9607, MDM9650, MSM8905, MSM8917, MSM8953, Nicobar, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM660, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2020-11125",
   lastModified: "2024-11-21T04:56:52.183",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.6,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-11-02T07:15:13.390",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:19
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Memory can be potentially corrupted if random index is allowed to manipulate TLB entries in Kernel from user library' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8098, Bitra, MDM9205, MDM9650, MSM8998, Nicobar, QCA6390, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qcn7605_firmware -
qualcomm qcn7605 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C9D1966-30F0-414D-BE75-0A14B12A1457",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Memory can be potentially corrupted if random index is allowed to manipulate TLB entries in Kernel from user library' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8098, Bitra, MDM9205, MDM9650, MSM8998, Nicobar, QCA6390, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una memoria puede ser potencialmente corrompida si a un índice aleatorio le es permitido manipular entradas TLB en Kernel de la biblioteca de usuario en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones APQ8098, Bitra, MDM9205, MDM9650, MSM8998, Nicobar, QCA6390, QCN7605, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-10628",
   lastModified: "2024-11-21T04:19:37.317",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:12.263",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-129",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 05:31
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Out of bounds memory access during memory copy while processing Host command' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ4019, IPQ6018, IPQ8064, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9558, QCA9563, QCA9880, QCA9886, QCA9980, QCN5500, QCN5502, QCS404, QCS405, QCS605, SA6155P, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link, Vendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq4019_firmware -
qualcomm ipq4019 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8064_firmware -
qualcomm ipq8064 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9207c_firmware -
qualcomm mdm9207c -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9640_firmware -
qualcomm mdm9640 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm qca6174a_firmware -
qualcomm qca6174a -
qualcomm qca6574_firmware -
qualcomm qca6574 -
qualcomm qca6574au_firmware -
qualcomm qca6574au -
qualcomm qca6584au_firmware -
qualcomm qca6584au -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qca9377_firmware -
qualcomm qca9377 -
qualcomm qca9379_firmware -
qualcomm qca9379 -
qualcomm qca9531_firmware -
qualcomm qca9531 -
qualcomm qca9558_firmware -
qualcomm qca9558 -
qualcomm qca9563_firmware -
qualcomm qca9563 -
qualcomm qca9880_firmware -
qualcomm qca9880 -
qualcomm qca9886_firmware -
qualcomm qca9886 -
qualcomm qca9980_firmware -
qualcomm qca9980 -
qualcomm qcn5500_firmware -
qualcomm qcn5500 -
qualcomm qcn5502_firmware -
qualcomm qcn5502 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx20_firmware -
qualcomm sdx20 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq4019_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94CB547F-0078-47CD-B511-06DE96882D5A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq4019:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AA679375-BB14-4B24-8AD9-B2BFBACE2FDB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8064_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A1CC1C1-F2CA-4C43-B9E9-1288C3496C7B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8064:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC82552A-9E7C-4A13-B7A5-43CEA218675C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9207c_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3CFA66A-CD2E-4670-A137-65E2C94C1A11",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9207c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE52FE99-DF0D-4C57-BB9C-0B853D1AF58B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7FD1C359-C79B-4CE8-A192-5AA34D0BF05B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "716B747E-672C-4B95-9D8E-1262338E67EA",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6174a_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4FF653D0-15CF-4A10-8D8E-BE56F4DAB890",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6174a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C31FA74C-6659-4457-BC32-257624F43C66",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9B828AC8-4A01-4537-B2BD-8180C99F5C32",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "66C16E1E-9D4A-4F20-B697-833FDCCA86FB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D527E2B1-2A46-4FBA-9F7A-F5543677C8FB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8374DDB3-D484-4141-AE0C-42333D2721F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6584au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C3DDA896-576C-44B8-85B6-F71F473F776B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6584au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "51A87BDA-5B24-4212-BAB3-D2BBB2F4162E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9377_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C4D2B46E-3996-42FD-B932-09E92C02EC8A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9377:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "98E58C63-F253-4DCC-8A14-48FEB64B4C3D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9379_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "25565FDA-651D-4A05-8B1E-2188B6921253",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9379:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B8D49750-BBEA-4A3D-9898-28B7A50A7F42",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9531_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E71452E6-551F-4E93-9951-2582C60BDFCE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9531:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6D69FB0E-FDFF-42B8-ADAD-797B7C91E979",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9558_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2A974EE-8003-4482-BC09-F7C24AB20267",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9558:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C6F2B1C1-8267-43EA-B3FA-314A588F4A6A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9563_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D5DCC558-4298-4D86-BC40-45B03DC9C823",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9563:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "979B7BE3-AB01-4CE7-BF10-E78A459B7D08",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9880_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7F81D132-B2DD-4D09-8561-21A2CFBCC9FA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9880:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F099A893-232B-48FB-81B3-F01AF2A19426",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9886_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "311229F9-4A32-462D-AE8D-E5E2B2C416CE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9886:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A523C3F-FB62-4728-8173-4C117C28AC5A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca9980_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DCBC53AC-E040-40E0-B09B-4117E641C9D4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca9980:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AE49086-E95B-4852-8A09-16A83DD63EC9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn5500_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C1E69BBD-5DC6-4129-A721-D425FFEFE316",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn5500:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4607E10D-3288-4CF2-86A4-BD30A3E3DCC5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcn5502_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D33E62D2-931E-465C-BC8E-71FB36CF6E36",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcn5502:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "254F1AB0-C21A-41A6-9B9B-ED074A4C9EBD",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "794BA13C-3C63-4695-AA45-676F85D904BE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Out of bounds memory access during memory copy while processing Host command' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ4019, IPQ6018, IPQ8064, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9558, QCA9563, QCA9880, QCA9886, QCA9980, QCN5500, QCN5502, QCS404, QCS405, QCS605, SA6155P, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SXR1130",
      },
      {
         lang: "es",
         value: "Un acceso a la memoria fuera de límites durante una copia de memoria mientras se procesa el comando Host en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, IPQ4019, IPQ6018, IPQ8064, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8996AU, MSM8998, QCA6174A, QCA6574, QCA6574AU, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9558, QCA9563, QCA9880, QCA9886, QCA9980, QCN5500, QCN5502, QCS404, QCS405, QCS605, SA6155P, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SXR1130.",
      },
   ],
   id: "CVE-2020-3666",
   lastModified: "2024-11-21T05:31:32.020",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:15.997",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 04:26
Severity ?
7.0 (High) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'While processing SMCInvoke asynchronous message header, message count is modified leading to a TOCTOU race condition and lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'While processing SMCInvoke asynchronous message header, message count is modified leading to a TOCTOU race condition and lead to memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Mientras se procesa el encabezado del mensaje asíncrono de SMCInvoke, el conteo de mensajes es modificado, conllevando a una condición de carrera TOCTOU y conlleva a una corrupción de la memoria en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones IPQ6018, Kamorta, MDM9205, MDM9607, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDM670, SDM710, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
   ],
   id: "CVE-2019-14119",
   lastModified: "2024-11-21T04:26:07.497",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "MEDIUM",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 6.9,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:M/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.4,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "HIGH",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:13.280",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-367",
            },
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 05:31
Severity ?
7.0 (High) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Non-secure memory is touched multiple times during TrustZone\u2019s execution and can lead to privilege escalation or memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8098, IPQ8074, Kamorta, MDM9150, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, QCA8081, QCS404, QCS605, QCS610, QM215, Rennell, SA415M, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Non-secure memory is touched multiple times during TrustZone\\u2019s execution and can lead to privilege escalation or memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8098, IPQ8074, Kamorta, MDM9150, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, QCA8081, QCS404, QCS605, QCS610, QM215, Rennell, SA415M, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130",
      },
      {
         lang: "es",
         value: "Una memoria no segura es manipulada varias veces durante la ejecución de TrustZone\\u2019s y puede conllevar a una escalada de privilegios o corrupción de la memoria en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8098, IPQ8074, Kamorta, MDM9150, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, QCA8081, QCS404, QCS605, QCS610, QM215, Rennell, SA415M, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130.",
      },
   ],
   id: "CVE-2020-3619",
   lastModified: "2024-11-21T05:31:25.180",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "MEDIUM",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 6.9,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:M/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.4,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "HIGH",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:14.983",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-367",
            },
            {
               lang: "en",
               value: "CWE-787",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-12-18 06:15
Modified
2024-11-21 04:19
Severity ?
5.9 (Medium) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Summary
Due to the use of non-time-constant comparison functions there is issue in timing side channels which can be used as a potential side channel for SUI corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Due to the use of non-time-constant comparison functions there is issue in timing side channels which can be used as a potential side channel for SUI corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Debido al uso de funciones de comparación non-time-constant, se presenta un problema en los canales laterales de sincronización que puede ser usado como un canal lateral potencial para la corrupción de la SUI en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-10482",
   lastModified: "2024-11-21T04:19:14.607",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "MEDIUM",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 7.1,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "NONE",
               vectorString: "AV:N/AC:M/Au:N/C:C/I:N/A:N",
               version: "2.0",
            },
            exploitabilityScore: 8.6,
            impactScore: 6.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "HIGH",
               attackVector: "NETWORK",
               availabilityImpact: "NONE",
               baseScore: 5.9,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 2.2,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-12-18T06:15:11.177",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-noinfo",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-09-08 10:15
Modified
2024-11-21 05:31
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
u'Information disclosure issue can occur due to partial secure display-touch session tear-down' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8076_firmware -
qualcomm apq8076 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qcm2150_firmware -
qualcomm qcm2150 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa415m_firmware -
qualcomm sa415m -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sc7180_firmware -
qualcomm sc7180 -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8076_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9A4CAA77-CC4D-49CF-9696-6C2542B31415",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8076:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E19E8B60-4C5C-4D1C-B9F0-AB1FC1F58949",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "723EAD03-6C32-4B1C-95C1-6FDA94F08151",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FBB4BB6E-8AF2-433A-A36C-0711598602BC",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa415m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D4387DBE-67F7-4E95-A2B0-828211EBDC22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa415m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC798E06-0A2E-4DAD-81D1-9B2FAE6327C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc7180_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "792A18B7-E775-4AF4-A8C4-D434400317B0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc7180:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5170B38-0976-49BB-A916-5BE44C567218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Information disclosure issue can occur due to partial secure display-touch session tear-down' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Un problema de divulgación de información puede ocurrir debido a un desmontaje parcial de la sesión display-touch segura en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2020-3643",
   lastModified: "2024-11-21T05:31:28.267",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 2.1,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 2.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "NONE",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-08T10:15:15.560",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-200",
            },
            {
               lang: "en",
               value: "CWE-404",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-12-18 06:15
Modified
2024-11-21 04:19
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
Possibility of Null pointer access if the SPDM commands are executed in the non-standard way in Trustzone in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9207c_firmware -
qualcomm mdm9207c -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8909w_firmware -
qualcomm msm8909w -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca8081_firmware -
qualcomm qca8081 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sdx24_firmware -
qualcomm sdx24 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9207c_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3CFA66A-CD2E-4670-A137-65E2C94C1A11",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9207c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DE52FE99-DF0D-4C57-BB9C-0B853D1AF58B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FE28A59C-7AA6-4B85-84E8-07852B96108E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5DEE828B-09A7-4AC1-8134-491A7C87C118",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca8081_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1D1C53DC-D2F3-4C92-9725-9A85340AF026",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca8081:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ED0585FF-E390-46E8-8701-70964A4057BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F9BE864E-7B1E-44D5-A10A-60078095DE33",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96DD6B48-2554-464D-A061-DBB4B8E00758",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Possibility of Null pointer access if the SPDM commands are executed in the non-standard way in Trustzone in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Una posibilidad de acceso del puntero Null si los comandos SPDM son ejecutados de manera no estándar en Trustzone en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en las versiones APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-10513",
   lastModified: "2024-11-21T04:19:19.900",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 4.9,
               confidentialityImpact: "NONE",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:N/I:N/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 6.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "NONE",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-12-18T06:15:11.440",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-476",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2019-11-21 15:15
Modified
2024-11-21 04:40
Severity ?
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
While invoking the API to copy from fd or local buffer to the secure buffer, Parameters being populated are from non secure environment. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinVendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletinVendor Advisory
Impacted products
Vendor Product Version
qualcomm apq8009_firmware -
qualcomm apq8009 -
qualcomm apq8017_firmware -
qualcomm apq8017 -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm apq8096_firmware -
qualcomm apq8096 -
qualcomm apq8096au_firmware -
qualcomm apq8096au -
qualcomm apq8098_firmware -
qualcomm apq8098 -
qualcomm mdm9150_firmware -
qualcomm mdm9150 -
qualcomm mdm9205_firmware -
qualcomm mdm9205 -
qualcomm mdm9206_firmware -
qualcomm mdm9206 -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm mdm9650_firmware -
qualcomm mdm9650 -
qualcomm msm8905_firmware -
qualcomm msm8905 -
qualcomm msm8909_firmware -
qualcomm msm8909 -
qualcomm msm8917_firmware -
qualcomm msm8917 -
qualcomm msm8920_firmware -
qualcomm msm8920 -
qualcomm msm8937_firmware -
qualcomm msm8937 -
qualcomm msm8940_firmware -
qualcomm msm8940 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm msm8996_firmware -
qualcomm msm8996 -
qualcomm msm8996au_firmware -
qualcomm msm8996au -
qualcomm msm8998_firmware -
qualcomm msm8998 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs605_firmware -
qualcomm qcs605 -
qualcomm qm215_firmware -
qualcomm qm215 -
qualcomm sda660_firmware -
qualcomm sda660 -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm439_firmware -
qualcomm sdm439 -
qualcomm sdm450_firmware -
qualcomm sdm450 -
qualcomm sdm630_firmware -
qualcomm sdm630 -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm636_firmware -
qualcomm sdm636 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdm670_firmware -
qualcomm sdm670 -
qualcomm sdm710_firmware -
qualcomm sdm710 -
qualcomm sdm845_firmware -
qualcomm sdm845 -
qualcomm sdm850_firmware -
qualcomm sdm850 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm snapdragon_high_med_2016_firmware -
qualcomm snapdragon_high_med_2016 -
qualcomm sxr1130_firmware -
qualcomm sxr1130 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C61BF93F-53DF-4399-AF41-45CEC1E0A2B8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CC498E0-B82B-4A53-8F55-6C1DA58AFA88",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8017_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6FEDA6CA-A0FD-4A72-B856-C8E65AC86902",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8017:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8D29295A-7183-46BE-B4EE-F891D1C17ED9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEFB4CC6-3271-48B1-9C1E-E2BE4E6AB9D5",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AD9B57D8-3066-4894-A8FC-962601F70210",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DD17C0A3-A200-4659-968B-B2DA03CB683F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B1F31FFB-982A-4308-82F8-C2480DABDED8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "13A7328A-89FB-4E9C-B4E3-D8097443FB7A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "678A68E0-81D8-4562-826E-03872184256C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4E2F2D26-2833-45A4-81F0-8E9F338C1E13",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4EB171B1-D163-4801-A241-8DD7193A5DCB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9205_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7CFD9663-D78A-45C0-A0E7-A4D5B98C9BF8",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9205:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "38C02461-5207-401D-B97A-3E25E23C9B2B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A960B86A-C397-4ACB-AEE6-55F316D32949",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D79B8959-3D1E-4B48-9181-D75FE90AAF98",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35B7E25E-FA92-4C36-883C-CFF36F4B3507",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "ECD99C6F-2444-4A5E-A517-0C8023DDF23D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5C9E095A-71DB-4386-827A-53846236AD00",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E981922-BB71-46E0-96C4-4CF75DF221F6",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CBDA0F03-436B-48C0-A31B-679B264ED989",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "EF40825E-30CE-46F0-BC05-C3BEE192A3E9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9BD0305A-E31C-4888-B97E-CE571D40560A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "369295A2-8236-44B6-A09F-7CB0BD20527F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "88413610-9B54-485B-A7A7-8CE4D68D6C9E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "50F55EB4-B6C3-41FE-9B8F-F17D94F170F2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3D56596-D726-44FD-ADEA-901D972AC66A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A58B5A6E-84B9-4356-9CFE-4E80BD81FB33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "372B5A77-74D4-437F-A228-040963861232",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "68AF5243-40F1-4C9A-BBCD-FA259C0B008B",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F25AB827-02D7-4FDE-BFB7-3F5DE8071477",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8AAB0FCA-8F94-4FB1-ACCC-02E0222BAE49",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8CA1E7B0-782B-4757-B118-802943798984",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95CB08EC-AE12-4A54-AA3C-998F01FC8763",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E9154AF-E52E-4E84-9322-2CA7EBD3E6FE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4796F9BD-61B3-45ED-B5E3-B061887285E2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B05FD66D-13A6-40E9-A64B-E428378F237E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qm215_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F18CD1F1-C36A-4840-88CD-8F00BD68EF1A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qm215:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A01800E-994E-4095-AD86-F02DC9D9C86E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A2326BD7-28A5-4244-8501-B109913E7AE6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C0B56360-7AC3-410A-B7F8-1BE8514B3781",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F3B5AFF-4AD4-4C10-9E39-C553C7E9E16E",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A09E7B90-DD7B-4617-90FD-29FF5BB190A9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8EA0D645-80F6-48C3-AF0D-99198ADC8778",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "814FF3F3-CD5A-45A3-988C-6457D2CEB48C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm636_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8F00D854-0AC7-415F-B19A-642CB9F72210",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm636:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F977B432-2709-4D75-AA3E-F440285B7BA2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "00865826-86AE-425F-BE6F-162F611FB200",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0CC0441C-C30B-4D99-9BAD-C1E4387302BB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D045BE4B-BC19-4A51-90E6-00C18389C81B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4F006960-CDE3-4E74-B4F0-2C4B2CA93959",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DED4B719-53B5-4D16-B3FA-ADE29D28ED86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D342C86B-E184-457C-9F72-BD853ED79425",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm850_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B3ADE826-C55D-4731-80B9-164FEA290FAC",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm850:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ED4F8FE-32DB-4696-A3AD-A9D7CB7E513A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:snapdragon_high_med_2016_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "706B5BF5-3803-4D3C-8A3B-34D30D8B36F9",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:snapdragon_high_med_2016:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C69745BA-DE6A-4646-959D-C45166559952",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "096F7BA5-FF58-416B-93EF-733B16326C86",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AF958FB-1611-4102-A2DB-8D4311AE0D72",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "While invoking the API to copy from fd or local buffer to the secure buffer, Parameters being populated are from non secure environment. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130",
      },
      {
         lang: "es",
         value: "Durante la invocación de la API para copiar desde fd o búfer local al búfer seguro, los parámetros que están siendo completados provienen de un entorno no seguro. En los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en las versiones APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130.",
      },
   ],
   id: "CVE-2019-2315",
   lastModified: "2024-11-21T04:40:41.317",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "HIGH",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "COMPLETE",
               baseScore: 7.2,
               confidentialityImpact: "COMPLETE",
               integrityImpact: "COMPLETE",
               vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 10,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2019-11-21T15:15:16.167",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-noinfo",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-11-02 07:15
Modified
2024-11-21 04:57
Severity ?
7.0 (High) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
u'Two threads running simultaneously from user space can lead to race condition in fastRPC driver' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8053, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8953, Nicobar, QCA6390, QCS404, QCS405, QCS610, Rennell, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA845, SDM429, SDM429W, SDM632, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
References
product-security@qualcomm.comhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
nvd@nist.govhttps://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletinPatch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletinBroken Link
Impacted products
Vendor Product Version
qualcomm agatti_firmware -
qualcomm agatti -
qualcomm apq8053_firmware -
qualcomm apq8053 -
qualcomm bitra_firmware -
qualcomm bitra -
qualcomm ipq4019_firmware -
qualcomm ipq4019 -
qualcomm ipq5018_firmware -
qualcomm ipq5018 -
qualcomm ipq6018_firmware -
qualcomm ipq6018 -
qualcomm ipq8064_firmware -
qualcomm ipq8064 -
qualcomm ipq8074_firmware -
qualcomm ipq8074 -
qualcomm kamorta_firmware -
qualcomm kamorta -
qualcomm mdm9607_firmware -
qualcomm mdm9607 -
qualcomm msm8953_firmware -
qualcomm msm8953 -
qualcomm nicobar_firmware -
qualcomm nicobar -
qualcomm qca6390_firmware -
qualcomm qca6390 -
qualcomm qcs404_firmware -
qualcomm qcs404 -
qualcomm qcs405_firmware -
qualcomm qcs405 -
qualcomm qcs610_firmware -
qualcomm qcs610 -
qualcomm rennell_firmware -
qualcomm rennell -
qualcomm sa515m_firmware -
qualcomm sa515m -
qualcomm sa6155p_firmware -
qualcomm sa6155p -
qualcomm sa8155p_firmware -
qualcomm sa8155p -
qualcomm saipan_firmware -
qualcomm saipan -
qualcomm sc8180x_firmware -
qualcomm sc8180x -
qualcomm sda845_firmware -
qualcomm sda845 -
qualcomm sdm429_firmware -
qualcomm sdm429 -
qualcomm sdm429w_firmware -
qualcomm sdm429w -
qualcomm sdm632_firmware -
qualcomm sdm632 -
qualcomm sdm660_firmware -
qualcomm sdm660 -
qualcomm sdx55_firmware -
qualcomm sdx55 -
qualcomm sm6150_firmware -
qualcomm sm6150 -
qualcomm sm7150_firmware -
qualcomm sm7150 -
qualcomm sm8150_firmware -
qualcomm sm8150 -
qualcomm sm8250_firmware -
qualcomm sm8250 -
qualcomm sxr2130_firmware -
qualcomm sxr2130 -


To clipboard 

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:agatti_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "39E6366C-4356-4689-B1B6-762861CB1813",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:agatti:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37440A79-2D29-4747-981B-7D2C526FFBC7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B052615D-857A-46D4-9098-1CBFA14687C6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B59B60-A298-4A56-A45A-E34B7AAB43D7",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:bitra_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "237CFDBE-F6BB-4D59-9A7D-8E1AF9FF4E70",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:bitra:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEA4D618-EC35-4458-BF22-7907CCBD90B2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq4019_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94CB547F-0078-47CD-B511-06DE96882D5A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq4019:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AA679375-BB14-4B24-8AD9-B2BFBACE2FDB",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq5018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9C84001E-B14B-4657-85E1-60FB0AD388AF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq5018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E84640A-6848-4C76-96FC-EA349801D440",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq6018_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B04589FF-F299-4EF6-A57B-1AD145372DBB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq6018:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDC1ADAD-DA77-47EF-8DB9-C36961C560C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8064_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "7A1CC1C1-F2CA-4C43-B9E9-1288C3496C7B",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8064:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "AC82552A-9E7C-4A13-B7A5-43CEA218675C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:ipq8074_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2914BF98-E69C-4C8D-8B10-759642ADD7B4",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:ipq8074:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2118C404-402F-463C-8160-3CC3B703DF30",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:kamorta_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4C17D128-D249-463B-B21B-F5B01265726A",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:kamorta:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "4ECFB565-9C4D-4F58-AD4E-283276688F00",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E9765187-8653-4D66-B230-B2CE862AC5C0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "BE4E0E39-0081-4261-8350-149E763AB462",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "94F76229-1A4A-4306-A4CC-C823A99F041A",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "490B208B-BBF3-4C58-A2BD-626DF6841AEE",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "572C4751-B805-430C-B26B-2DF661B362C2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "96FBD6DF-F174-4690-AA3D-1E8974E3627F",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A3BF86E1-3FAC-4A42-8C01-5944C6C30AE5",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs404_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2A2F7E6B-D499-4698-A203-A12725E51DFF",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs404:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B172AA65-B693-48DF-9D5A-7BB6FCC4A2A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "36F5A18B-8C9E-4A38-B994-E3E2696BB83D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B703667D-DE09-40AF-BA44-E0E56252A790",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E634F59C-6817-4898-A141-082044E66836",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "29762819-EC90-499C-A8C6-1423DE3FE6B9",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D49376E9-D31E-4E84-9401-45859263F26C",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B6D66742-81FA-46D6-B7A2-5460923D81A8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa515m_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "02A2DB6A-7137-4D3D-9D6E-B9B0D0376758",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa515m:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5BE4F498-4C58-4DCC-B7D8-1B461177D083",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DC40C14-3B2D-4E00-9E0F-86E6BDBF2D81",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0514D433-162C-4680-8912-721D19BE6201",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sa8155p_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C8648B38-2597-401A-8F53-D582FA911569",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sa8155p:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A01CD59B-8F21-4CD6-8A1A-7B37547A8715",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "41BF2712-4559-4C5E-937D-74DE969A7BE0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FE6662E-D919-497B-81B4-3F442201D730",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "30A45C1A-C921-42B5-9237-367245023B45",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "56C9D979-F214-4CD4-8CF9-43BC804BB179",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "022D7D87-F60F-4DD2-9E0B-A9DFD3D69B22",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "37FA5777-1B35-4BD1-BB81-CB5DE62F3D56",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9DFD2C9A-6C25-4B8F-BE64-DAD3DCCDEADD",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8DE61FCE-CA87-46E1-981D-B44697E54CB1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "C7E52771-4FB7-45DB-A349-4DD911F53752",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "72F6CE39-9299-4FC3-BC48-11F79034F2E4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A02E12AC-F845-4164-9D95-ACD7167B6DD6",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "321F7DE7-E6E9-449F-867B-04A9F53334B0",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "24D7B67C-6FEC-48F8-9D46-778E4528BC20",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "05006807-D961-446C-B8DC-C87507F1316E",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E93FB34B-3674-404D-9687-E092E9A246AB",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F3FF5A9A-A34A-499C-B6E0-D67B496C5454",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm6150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8ABE492A-3755-4969-9DEB-4B85EBB84644",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm6150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "E3D3787B-6ACC-4591-B041-01307ED66C36",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "F63A748F-2236-4486-83F1-DE4BCBE5D56D",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "184F3DFC-27E8-48AC-B46C-C589DBCBF030",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sm8250_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "DDC730C6-FB32-4566-AAE2-B2B261BA9411",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sm8250:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5A432773-467F-492C-AA3A-ADF08A21FB3F",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:qualcomm:sxr2130_firmware:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9F9FA3B1-E4E4-4D9B-A99C-7BF958D4B993",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:qualcomm:sxr2130:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "95762B01-2762-45BD-8388-5DB77EA6139C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "u'Two threads running simultaneously from user space can lead to race condition in fastRPC driver' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8053, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8953, Nicobar, QCA6390, QCS404, QCS405, QCS610, Rennell, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA845, SDM429, SDM429W, SDM632, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
      },
      {
         lang: "es",
         value: "Dos hilos ejecutados simultáneamente desde el espacio del usuario pueden conllevar a una condición de carrera en el controlador fastRPC en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking en versiones Agatti, APQ8053, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8953, Nicobar, QCA6390, QCS404, QCS405, QCS610, Rennell, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA845, SDM429, SDM429W, SDM632, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130",
      },
   ],
   id: "CVE-2020-11173",
   lastModified: "2024-11-21T04:57:03.403",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "MEDIUM",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 4.4,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:L/AC:M/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 3.4,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "HIGH",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-11-02T07:15:14.153",
   references: [
      {
         source: "product-security@qualcomm.com",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
      {
         source: "nvd@nist.gov",
         tags: [
            "Patch",
            "Vendor Advisory",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Broken Link",
         ],
         url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
      },
   ],
   sourceIdentifier: "product-security@qualcomm.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-362",
            },
            {
               lang: "en",
               value: "CWE-416",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

var-202011-1398
Vulnerability from variot

u'While processing invalid connection request PDU which is nonstandard (interval or timeout is 0) from central device may lead peripheral system enter into dead lock state.(This CVE is equivalent to InvalidConnectionRequest(CVE-2019-19193) mentioned in sweyntooth paper)' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8017, APQ8053, AR9344, Bitra, IPQ5018, Kamorta, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9886, QCM6125, QCN7605, QCS404, QCS405, QCS605, QCS610, QRB5165, Rennell, SA415M, SA515M, Saipan, SC7180, SC8180X, SDA845, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Snapdragon The product contains an input verification vulnerability.Denial of service (DoS) It may be put into a state. The Qualcomm chip is a chip of Qualcomm (Qualcomm). A way to miniaturize circuits (mainly including semiconductor equipment, but also passive components, etc.) and often manufactured on the surface of semiconductor wafers. Many Qualcomm products have input verification error vulnerabilities. The vulnerability stems from the fact that when processing invalid connection requests from the central device, if the PDU is not standard, it may cause the peripheral system to enter a deadlock state

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-202011-1398",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "apq8053",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc8180x",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx24",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "kamorta",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "agatti",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8250",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca9377",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs610",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qrb5165",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr2130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9640",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa515m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx55",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "saipan",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm7150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm6150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa415m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6390",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcm6125",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca9886",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "bitra",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8017",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6574au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6174a",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcn7605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "nicobar",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx20",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq5018",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "rennell",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc7180",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ar9344",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "bitra",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9640",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8009",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "agatti",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq5018",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8017",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "kamorta",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ar9344",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012821",
         },
         {
            db: "NVD",
            id: "CVE-2020-3704",
         },
      ],
   },
   cve: "CVE-2020-3704",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "NETWORK",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "COMPLETE",
                  baseScore: 7.8,
                  confidentialityImpact: "NONE",
                  exploitabilityScore: 10,
                  id: "CVE-2020-3704",
                  impactScore: 6.9,
                  integrityImpact: "NONE",
                  severity: "HIGH",
                  trust: 1.9,
                  vectorString: "AV:N/AC:L/Au:N/C:N/I:N/A:C",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "NONE",
                  exploitabilityScore: 3.9,
                  id: "CVE-2020-3704",
                  impactScore: 3.6,
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Network",
                  author: "NVD",
                  availabilityImpact: "High",
                  baseScore: 7.5,
                  baseSeverity: "High",
                  confidentialityImpact: "None",
                  exploitabilityScore: null,
                  id: "CVE-2020-3704",
                  impactScore: null,
                  integrityImpact: "None",
                  privilegesRequired: "None",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2020-3704",
                  trust: 1,
                  value: "HIGH",
               },
               {
                  author: "NVD",
                  id: "CVE-2020-3704",
                  trust: 0.8,
                  value: "High",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-202010-304",
                  trust: 0.6,
                  value: "HIGH",
               },
               {
                  author: "VULMON",
                  id: "CVE-2020-3704",
                  trust: 0.1,
                  value: "HIGH",
               },
            ],
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-3704",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012821",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-304",
         },
         {
            db: "NVD",
            id: "CVE-2020-3704",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "u'While processing invalid connection request PDU which is nonstandard (interval or timeout is 0) from central device may lead peripheral system enter into dead lock state.(This CVE is equivalent to InvalidConnectionRequest(CVE-2019-19193) mentioned in sweyntooth paper)' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8017, APQ8053, AR9344, Bitra, IPQ5018, Kamorta, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6390, QCA6574AU, QCA9377, QCA9886, QCM6125, QCN7605, QCS404, QCS405, QCS605, QCS610, QRB5165, Rennell, SA415M, SA515M, Saipan, SC7180, SC8180X, SDA845, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Snapdragon The product contains an input verification vulnerability.Denial of service (DoS) It may be put into a state. The Qualcomm chip is a chip of Qualcomm (Qualcomm). A way to miniaturize circuits (mainly including semiconductor equipment, but also passive components, etc.) and often manufactured on the surface of semiconductor wafers. \nMany Qualcomm products have input verification error vulnerabilities. The vulnerability stems from the fact that when processing invalid connection requests from the central device, if the PDU is not standard, it may cause the peripheral system to enter a deadlock state",
      sources: [
         {
            db: "NVD",
            id: "CVE-2020-3704",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012821",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-304",
         },
         {
            db: "VULMON",
            id: "CVE-2020-3704",
         },
      ],
      trust: 2.25,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2020-3704",
            trust: 2.5,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012821",
            trust: 0.8,
         },
         {
            db: "AUSCERT",
            id: "ESB-2020.3453",
            trust: 0.6,
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-304",
            trust: 0.6,
         },
         {
            db: "VULMON",
            id: "CVE-2020-3704",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-3704",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012821",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-304",
         },
         {
            db: "NVD",
            id: "CVE-2020-3704",
         },
      ],
   },
   id: "VAR-202011-1398",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VARIoT devices database",
            id: null,
         },
      ],
      trust: 0.4266432,
   },
   last_update_date: "2024-11-23T20:02:52.241000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "October 2020 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
         },
         {
            title: "Google Android Security vulnerabilities",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=129905",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012821",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-304",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-667",
            trust: 1,
         },
         {
            problemtype: "Incorrect input confirmation (CWE-20) [NVD Evaluation ]",
            trust: 0.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012821",
         },
         {
            db: "NVD",
            id: "CVE-2020-3704",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.7,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
         },
         {
            trust: 1.7,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2020-3704",
         },
         {
            trust: 0.6,
            url: "https://www.auscert.org.au/bulletins/esb-2020.3453/",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-october-2020-33491",
         },
         {
            trust: 0.1,
            url: "https://cwe.mitre.org/data/definitions/667.html",
         },
         {
            trust: 0.1,
            url: "https://nvd.nist.gov",
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-3704",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012821",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-304",
         },
         {
            db: "NVD",
            id: "CVE-2020-3704",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "VULMON",
            id: "CVE-2020-3704",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012821",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-304",
         },
         {
            db: "NVD",
            id: "CVE-2020-3704",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-11-02T00:00:00",
            db: "VULMON",
            id: "CVE-2020-3704",
         },
         {
            date: "2021-06-04T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2020-012821",
         },
         {
            date: "2020-10-06T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202010-304",
         },
         {
            date: "2020-11-02T07:15:15.327000",
            db: "NVD",
            id: "CVE-2020-3704",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2021-07-21T00:00:00",
            db: "VULMON",
            id: "CVE-2020-3704",
         },
         {
            date: "2021-06-04T07:39:00",
            db: "JVNDB",
            id: "JVNDB-2020-012821",
         },
         {
            date: "2021-08-16T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202010-304",
         },
         {
            date: "2024-11-21T05:31:36.630000",
            db: "NVD",
            id: "CVE-2020-3704",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "remote",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202010-304",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon  Product input verification vulnerabilities",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012821",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "input validation error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202010-304",
         },
      ],
      trust: 0.6,
   },
}

var-201911-1430
Vulnerability from variot

While deserializing any key blob during key operations, buffer overflow could occur exposing partial key information if any key operations are invoked(Depends on CVE-2018-13907) in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130. plural Snapdragon The product contains an input validation vulnerability.Information may be obtained. Qualcomm MDM9206 is a central processing unit (CPU) product of Qualcomm.

Many Qualcomm products have input validation error vulnerabilities, which can be exploited by attackers to cause buffer overflows or heap overflows

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201911-1430",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "sd 427",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 425",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820a",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 435",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 712",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 625",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 8cx",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 410",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 205",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 212",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 835",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 652",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "snapdragon high med 2016",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8909w",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 855",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 412",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 430",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 210",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8909w",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "215",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm 8996au",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "605",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "210",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "212",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "205",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "425",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "427",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "430",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "435",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "439",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "429",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "450",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "625",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "632",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "712",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "710",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "670",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "820",
         },
         {
            model: "sd 820a",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "835",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "845",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "850",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "855",
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "660",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "439",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "630",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "660",
         },
         {
            model: "msm 8909w",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "636",
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9206",
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9607",
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9150",
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9650",
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9205",
         },
         {
            model: "sd 8cx",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "snapdragon high med",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "2016",
         },
         {
            model: "sxr",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "1130",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "650/52",
         },
         {
            model: "qcs",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "404",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "410/12",
         },
         {
            model: "eudora",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "215",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20151",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-011674",
         },
         {
            db: "NVD",
            id: "CVE-2019-2275",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9150_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9205_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9206_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9607_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9650_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:msm8909w_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:msm8996au_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs404_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs605_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qualcomm_215_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-011674",
         },
      ],
   },
   cve: "CVE-2019-2275",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 2.1,
                  confidentialityImpact: "PARTIAL",
                  exploitabilityScore: 3.9,
                  id: "CVE-2019-2275",
                  impactScore: 2.9,
                  integrityImpact: "NONE",
                  severity: "LOW",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "CNVD",
                  availabilityImpact: "NONE",
                  baseScore: 2.1,
                  confidentialityImpact: "PARTIAL",
                  exploitabilityScore: 3.9,
                  id: "CNVD-2020-20151",
                  impactScore: 2.9,
                  integrityImpact: "NONE",
                  severity: "LOW",
                  trust: 0.6,
                  vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2019-2275",
                  impactScore: 3.6,
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Local",
                  author: "NVD",
                  availabilityImpact: "None",
                  baseScore: 5.5,
                  baseSeverity: "Medium",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2019-2275",
                  impactScore: null,
                  integrityImpact: "None",
                  privilegesRequired: "Low",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2019-2275",
                  trust: 1,
                  value: "MEDIUM",
               },
               {
                  author: "NVD",
                  id: "CVE-2019-2275",
                  trust: 0.8,
                  value: "Medium",
               },
               {
                  author: "CNVD",
                  id: "CNVD-2020-20151",
                  trust: 0.6,
                  value: "LOW",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201909-122",
                  trust: 0.6,
                  value: "MEDIUM",
               },
            ],
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20151",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-011674",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201909-122",
         },
         {
            db: "NVD",
            id: "CVE-2019-2275",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "While deserializing any key blob during key operations, buffer overflow could occur exposing partial key information if any key operations are invoked(Depends on CVE-2018-13907) in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130. plural Snapdragon The product contains an input validation vulnerability.Information may be obtained. Qualcomm MDM9206 is a central processing unit (CPU) product of Qualcomm. \n\r\n\r\nMany Qualcomm products have input validation error vulnerabilities, which can be exploited by attackers to cause buffer overflows or heap overflows",
      sources: [
         {
            db: "NVD",
            id: "CVE-2019-2275",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-011674",
         },
         {
            db: "CNVD",
            id: "CNVD-2020-20151",
         },
      ],
      trust: 2.16,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2019-2275",
            trust: 3,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-011674",
            trust: 0.8,
         },
         {
            db: "CNVD",
            id: "CNVD-2020-20151",
            trust: 0.6,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201909-122",
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20151",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-011674",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201909-122",
         },
         {
            db: "NVD",
            id: "CVE-2019-2275",
         },
      ],
   },
   id: "VAR-201911-1430",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20151",
         },
      ],
      trust: 1.6,
   },
   iot_taxonomy: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            category: [
               "Network device",
            ],
            sub_category: null,
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20151",
         },
      ],
   },
   last_update_date: "2024-11-23T22:16:46.300000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "Android のセキュリティに関する公開情報",
            trust: 0.8,
            url: "https://source.android.com/security/bulletin/",
         },
         {
            title: "Patch for Multiple Qualcomm product input verification error vulnerabilities (CNVD-2020-20151)",
            trust: 0.6,
            url: "https://www.cnvd.org.cn/patchInfo/show/211525",
         },
         {
            title: "Multiple Qualcomm Product input verification error vulnerability fixes",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=97884",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20151",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-011674",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201909-122",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-119",
            trust: 1,
         },
         {
            problemtype: "CWE-20",
            trust: 0.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-011674",
         },
         {
            db: "NVD",
            id: "CVE-2019-2275",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.6,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2019-2275",
         },
         {
            trust: 1.2,
            url: "https://www.qualcomm.com/company/product-security/bulletins/september-2019-bulletin",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-2275",
         },
         {
            trust: 0.6,
            url: "https://source.android.com/security/bulletin/2019-09-01",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-os-multiple-vulnerabilities-30243",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20151",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-011674",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201909-122",
         },
         {
            db: "NVD",
            id: "CVE-2019-2275",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "CNVD",
            id: "CNVD-2020-20151",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-011674",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201909-122",
         },
         {
            db: "NVD",
            id: "CVE-2019-2275",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-30T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-20151",
         },
         {
            date: "2019-11-15T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-011674",
         },
         {
            date: "2019-09-04T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201909-122",
         },
         {
            date: "2019-11-06T17:15:13.410000",
            db: "NVD",
            id: "CVE-2019-2275",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-30T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-20151",
         },
         {
            date: "2019-11-15T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-011674",
         },
         {
            date: "2020-10-28T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201909-122",
         },
         {
            date: "2024-11-21T04:40:35.850000",
            db: "NVD",
            id: "CVE-2019-2275",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201909-122",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon Vulnerability related to input validation in products",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-011674",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "buffer error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201909-122",
         },
      ],
      trust: 0.6,
   },
}

var-201911-1617
Vulnerability from variot

Out-of-bounds memory access in Qurt kernel function when using the identifier to access Qurt kernel buffer to retrieve thread data. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8976, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM8150, SM8250, Snapdragon_High_Med_2016, SXR1130, SXR2130. plural Snapdragon The product contains a classic buffer overflow vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm MDM9206 and so on are the products of American Qualcomm. MDM9206 is a central processing unit (CPU) product. MDM9607 is a central processing unit (CPU) product. SDX55 is a modem.

Kernel in a number of Qualcomm products has a security vulnerability that stems from programs that do not properly validate array indexes. No detailed vulnerability details are provided at this time

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201911-1617",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "sxr2130",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8250",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "snapdragon high med 2016",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8909",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8953",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc8180x",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8917",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8998",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9640",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9655",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8976",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca8081",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8940",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcm2150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx55",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8098",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8017",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qm215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcn7605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "nicobar",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8909w",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8905",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9635m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8920",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx20",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8937",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8017",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096au",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8098",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9150",
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9607",
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9650",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8909",
         },
         {
            model: "msm 8996au",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "660",
         },
         {
            model: "msm 8909w",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9206",
         },
         {
            model: "ipq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8074",
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9640",
         },
         {
            model: "snapdragon high med",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "2016",
         },
         {
            model: "sxr",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "1130",
         },
         {
            model: "qca",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8081",
         },
         {
            model: "apq 8096au",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8098",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8998",
         },
         {
            model: "nicobar",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "845",
         },
         {
            model: "sm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8150",
         },
         {
            model: "sm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8250",
         },
         {
            model: "sxr",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "2130",
         },
         {
            model: "mdm 9635m",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9655",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8905",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8917",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8920",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8937",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8940",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8953",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8976",
         },
         {
            model: "qcm",
            scope: "eq",
            trust: 0.6,
            vendor: "marwel",
            version: "2150",
         },
         {
            model: "sdx",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "55",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8996",
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8009",
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8017",
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8053",
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8096",
         },
         {
            model: "qcm",
            scope: "eq",
            trust: 0.6,
            vendor: "marwel",
            version: "7605",
         },
         {
            model: "qcn",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "404",
         },
         {
            model: "qcn",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "405",
         },
         {
            model: "qcn",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "605",
         },
         {
            model: "qcs",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "215",
         },
         {
            model: "qm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8180x",
         },
         {
            model: "sc",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "660",
         },
         {
            model: "sc",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "845",
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "429",
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "439",
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "450",
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "630",
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "632",
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "636",
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "670",
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "710",
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "850",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "20",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16060",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-016156",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-372",
         },
         {
            db: "NVD",
            id: "CVE-2018-13916",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8009_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8017_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8053_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8096_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8096au_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8098_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:ipq8074_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9150_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9206_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9607_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2018-016156",
         },
      ],
   },
   cve: "CVE-2018-13916",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "COMPLETE",
                  baseScore: 7.2,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 3.9,
                  id: "CVE-2018-13916",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "CNVD",
                  availabilityImpact: "COMPLETE",
                  baseScore: 7.2,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 3.9,
                  id: "CNVD-2020-16060",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 0.6,
                  vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2018-13916",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Local",
                  author: "NVD",
                  availabilityImpact: "High",
                  baseScore: 7.8,
                  baseSeverity: "High",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2018-13916",
                  impactScore: null,
                  integrityImpact: "High",
                  privilegesRequired: "Low",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2018-13916",
                  trust: 1,
                  value: "HIGH",
               },
               {
                  author: "NVD",
                  id: "CVE-2018-13916",
                  trust: 0.8,
                  value: "High",
               },
               {
                  author: "CNVD",
                  id: "CNVD-2020-16060",
                  trust: 0.6,
                  value: "HIGH",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201910-372",
                  trust: 0.6,
                  value: "MEDIUM",
               },
            ],
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16060",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-016156",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-372",
         },
         {
            db: "NVD",
            id: "CVE-2018-13916",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "Out-of-bounds memory access in Qurt kernel function when using the identifier to access Qurt kernel buffer to retrieve thread data. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8976, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QM215, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX55, SM8150, SM8250, Snapdragon_High_Med_2016, SXR1130, SXR2130. plural Snapdragon The product contains a classic buffer overflow vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm MDM9206 and so on are the products of American Qualcomm. MDM9206 is a central processing unit (CPU) product. MDM9607 is a central processing unit (CPU) product. SDX55 is a modem. \n\r\n\r\nKernel in a number of Qualcomm products has a security vulnerability that stems from programs that do not properly validate array indexes. No detailed vulnerability details are provided at this time",
      sources: [
         {
            db: "NVD",
            id: "CVE-2018-13916",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-016156",
         },
         {
            db: "CNVD",
            id: "CNVD-2020-16060",
         },
      ],
      trust: 2.16,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2018-13916",
            trust: 3,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-016156",
            trust: 0.8,
         },
         {
            db: "CNVD",
            id: "CNVD-2020-16060",
            trust: 0.6,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-372",
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16060",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-016156",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-372",
         },
         {
            db: "NVD",
            id: "CVE-2018-13916",
         },
      ],
   },
   id: "VAR-201911-1617",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16060",
         },
      ],
      trust: 1.6,
   },
   iot_taxonomy: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            category: [
               "Network device",
            ],
            sub_category: null,
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16060",
         },
      ],
   },
   last_update_date: "2024-11-23T22:51:33.203000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "October 2019 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
         },
         {
            title: "Patch for Unknown vulnerability in multiple Qualcomm products (CNVD-2020-16060)",
            trust: 0.6,
            url: "https://www.cnvd.org.cn/patchInfo/show/207821",
         },
         {
            title: "Multiple Qualcomm Product security vulnerabilities",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=99057",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16060",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-016156",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-372",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-120",
            trust: 1.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2018-016156",
         },
         {
            db: "NVD",
            id: "CVE-2018-13916",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 2.2,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2018-13916",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-13916",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-pixel-multiple-vulnerabilities-of-october-2019-30549",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16060",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-016156",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-372",
         },
         {
            db: "NVD",
            id: "CVE-2018-13916",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "CNVD",
            id: "CNVD-2020-16060",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-016156",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-372",
         },
         {
            db: "NVD",
            id: "CVE-2018-13916",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-09T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-16060",
         },
         {
            date: "2019-11-29T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2018-016156",
         },
         {
            date: "2019-10-08T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201910-372",
         },
         {
            date: "2019-11-21T15:15:12.370000",
            db: "NVD",
            id: "CVE-2018-13916",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-09T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-16060",
         },
         {
            date: "2019-11-29T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2018-016156",
         },
         {
            date: "2019-12-05T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201910-372",
         },
         {
            date: "2024-11-21T03:48:19.990000",
            db: "NVD",
            id: "CVE-2018-13916",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201910-372",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon Classic buffer overflow vulnerability in products",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2018-016156",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "other",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201910-372",
         },
      ],
      trust: 0.6,
   },
}

var-202011-0124
Vulnerability from variot

u'Out of bound access can happen in MHI command process due to lack of check of channel id value received from MHI devices' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9150, MDM9607, MDM9650, MSM8905, MSM8917, MSM8953, Nicobar, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM660, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Qualcomm The product contains a vulnerability related to out-of-bounds writing.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. Qualcomm MDM9607, etc. are all products of Qualcomm. MDM9607 is a central processing unit (CPU) product. MDM9650 is a central processing unit (CPU) product. SDM660 is a central processing unit (CPU) product. QCS404 is a central processing unit (CPU) product. QCS605 is a central processing unit (CPU) product. SDX55 is a modem. SDM670 is a central processing unit (CPU) product. SDM710 is a central processing unit (CPU) product. MSM8917 is a central processing unit (CPU) product. SXR2130 is a central processing unit (CPU) product. SDM439 is a central processing unit (CPU) product. MSM8905 is a central processing unit (CPU) product. IPQ6018 is a central processing unit (CPU) product. QCA6390 is a central processing unit (CPU) product. Rennell is a central processing unit (CPU) product. Wire etc. are the products of individual developers. Wire is a chat software. Qualcomm APQ8009 is a central processing unit. Many Qualcomm products have buffer error vulnerabilities. The vulnerability stems from the lack of checking the channel id value received from the MHI device, and out-of-bounds access may occur

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-202011-0124",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "msm8953",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc8180x",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8917",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq6018",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "kamorta",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa8155p",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "agatti",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8250",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs610",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qrb5165",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq4019",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr2130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca9531",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa515m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcm2150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx55",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "saipan",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm7150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm6150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa415m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429w",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6390",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8064",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "bitra",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa6155p",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qm215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "nicobar",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8905",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq5018",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "rennell",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "bitra",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "agatti",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8009",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq5018",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq6018",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq4019",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9150",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq8064",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq8074",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "kamorta",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012935",
         },
         {
            db: "NVD",
            id: "CVE-2020-11125",
         },
      ],
   },
   cve: "CVE-2020-11125",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "PARTIAL",
                  baseScore: 4.6,
                  confidentialityImpact: "PARTIAL",
                  exploitabilityScore: 3.9,
                  id: "CVE-2020-11125",
                  impactScore: 6.4,
                  integrityImpact: "PARTIAL",
                  severity: "MEDIUM",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2020-11125",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Local",
                  author: "NVD",
                  availabilityImpact: "High",
                  baseScore: 7.8,
                  baseSeverity: "High",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2020-11125",
                  impactScore: null,
                  integrityImpact: "High",
                  privilegesRequired: "Low",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2020-11125",
                  trust: 1,
                  value: "HIGH",
               },
               {
                  author: "NVD",
                  id: "CVE-2020-11125",
                  trust: 0.8,
                  value: "High",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-202010-303",
                  trust: 0.6,
                  value: "HIGH",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012935",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-303",
         },
         {
            db: "NVD",
            id: "CVE-2020-11125",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "u'Out of bound access can happen in MHI command process due to lack of check of channel id value received from MHI devices' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9150, MDM9607, MDM9650, MSM8905, MSM8917, MSM8953, Nicobar, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM660, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Qualcomm The product contains a vulnerability related to out-of-bounds writing.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. Qualcomm MDM9607, etc. are all products of Qualcomm. MDM9607 is a central processing unit (CPU) product. MDM9650 is a central processing unit (CPU) product. SDM660 is a central processing unit (CPU) product. QCS404 is a central processing unit (CPU) product. QCS605 is a central processing unit (CPU) product. SDX55 is a modem. SDM670 is a central processing unit (CPU) product. SDM710 is a central processing unit (CPU) product. MSM8917 is a central processing unit (CPU) product. SXR2130 is a central processing unit (CPU) product. SDM439 is a central processing unit (CPU) product. MSM8905 is a central processing unit (CPU) product. IPQ6018 is a central processing unit (CPU) product. QCA6390 is a central processing unit (CPU) product. Rennell is a central processing unit (CPU) product. Wire etc. are the products of individual developers. Wire is a chat software. Qualcomm APQ8009 is a central processing unit. \nMany Qualcomm products have buffer error vulnerabilities. The vulnerability stems from the lack of checking the channel id value received from the MHI device, and out-of-bounds access may occur",
      sources: [
         {
            db: "NVD",
            id: "CVE-2020-11125",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012935",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-303",
         },
         {
            db: "VULMON",
            id: "CVE-2020-11125",
         },
      ],
      trust: 2.25,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2020-11125",
            trust: 2.5,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012935",
            trust: 0.8,
         },
         {
            db: "AUSCERT",
            id: "ESB-2020.3453",
            trust: 0.6,
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-303",
            trust: 0.6,
         },
         {
            db: "VULMON",
            id: "CVE-2020-11125",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-11125",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012935",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-303",
         },
         {
            db: "NVD",
            id: "CVE-2020-11125",
         },
      ],
   },
   id: "VAR-202011-0124",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VARIoT devices database",
            id: null,
         },
      ],
      trust: 0.16046866999999998,
   },
   last_update_date: "2024-11-23T20:22:51.939000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "October 2020 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
         },
         {
            title: "Google Android Security vulnerabilities",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=129904",
         },
         {
            title: "Threatpost",
            trust: 0.1,
            url: "https://threatpost.com/google-android-system-flaws/159948/",
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-11125",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012935",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-303",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-787",
            trust: 1,
         },
         {
            problemtype: "Out-of-bounds writing (CWE-787) [NVD Evaluation ]",
            trust: 0.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012935",
         },
         {
            db: "NVD",
            id: "CVE-2020-11125",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.7,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
         },
         {
            trust: 1.6,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2020-11125",
         },
         {
            trust: 0.6,
            url: "https://www.auscert.org.au/bulletins/esb-2020.3453/",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-october-2020-33491",
         },
         {
            trust: 0.1,
            url: "https://nvd.nist.gov",
         },
         {
            trust: 0.1,
            url: "https://threatpost.com/google-android-system-flaws/159948/",
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-11125",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012935",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-303",
         },
         {
            db: "NVD",
            id: "CVE-2020-11125",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "VULMON",
            id: "CVE-2020-11125",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012935",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-303",
         },
         {
            db: "NVD",
            id: "CVE-2020-11125",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-11-02T00:00:00",
            db: "VULMON",
            id: "CVE-2020-11125",
         },
         {
            date: "2021-06-15T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2020-012935",
         },
         {
            date: "2020-10-06T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202010-303",
         },
         {
            date: "2020-11-02T07:15:13.390000",
            db: "NVD",
            id: "CVE-2020-11125",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-11-09T00:00:00",
            db: "VULMON",
            id: "CVE-2020-11125",
         },
         {
            date: "2021-06-15T06:01:00",
            db: "JVNDB",
            id: "JVNDB-2020-012935",
         },
         {
            date: "2020-11-12T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202010-303",
         },
         {
            date: "2024-11-21T04:56:52.183000",
            db: "NVD",
            id: "CVE-2020-11125",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202010-303",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Qualcomm  Out-of-bounds write vulnerabilities in the product",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012935",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "buffer error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202010-303",
         },
      ],
      trust: 0.6,
   },
}

var-202009-1279
Vulnerability from variot

u'Non-secure memory is touched multiple times during TrustZone\u2019s execution and can lead to privilege escalation or memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8098, IPQ8074, Kamorta, MDM9150, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, QCA8081, QCS404, QCS605, QCS610, QM215, Rennell, SA415M, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130. plural Snapdragon The product has Time-of-check Time-of-use (TOCTOU) There is a race condition vulnerability.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-202009-1279",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "msm8909",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8953",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8917",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8998",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx24",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "kamorta",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs610",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca8081",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8940",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm7150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8098",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm6150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa415m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8017",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qm215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8905",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8920",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "rennell",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc7180",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8937",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8017",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8053",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8098",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq8074",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "kamorta",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9150",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9206",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9650",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010698",
         },
         {
            db: "NVD",
            id: "CVE-2020-3619",
         },
      ],
   },
   cve: "CVE-2020-3619",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "MEDIUM",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "COMPLETE",
                  baseScore: 6.9,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 3.4,
                  id: "CVE-2020-3619",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "MEDIUM",
                  trust: 1.8,
                  vectorString: "AV:L/AC:M/Au:N/C:C/I:C/A:C",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "HIGH",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 7,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1,
                  id: "CVE-2020-3619",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               {
                  attackComplexity: "High",
                  attackVector: "Local",
                  author: "NVD",
                  availabilityImpact: "High",
                  baseScore: 7,
                  baseSeverity: "High",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2020-3619",
                  impactScore: null,
                  integrityImpact: "High",
                  privilegesRequired: "Low",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2020-3619",
                  trust: 1,
                  value: "HIGH",
               },
               {
                  author: "NVD",
                  id: "CVE-2020-3619",
                  trust: 0.8,
                  value: "High",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-202008-040",
                  trust: 0.6,
                  value: "CRITICAL",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010698",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-040",
         },
         {
            db: "NVD",
            id: "CVE-2020-3619",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "u'Non-secure memory is touched multiple times during TrustZone\\u2019s execution and can lead to privilege escalation or memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8098, IPQ8074, Kamorta, MDM9150, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, QCA8081, QCS404, QCS605, QCS610, QM215, Rennell, SA415M, SC7180, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130. plural Snapdragon The product has Time-of-check Time-of-use (TOCTOU) There is a race condition vulnerability.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state",
      sources: [
         {
            db: "NVD",
            id: "CVE-2020-3619",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-010698",
         },
      ],
      trust: 1.62,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2020-3619",
            trust: 2.4,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-010698",
            trust: 0.8,
         },
         {
            db: "AUSCERT",
            id: "ESB-2020.2661",
            trust: 0.6,
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-040",
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010698",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-040",
         },
         {
            db: "NVD",
            id: "CVE-2020-3619",
         },
      ],
   },
   id: "VAR-202009-1279",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VARIoT devices database",
            id: null,
         },
      ],
      trust: 0.16046866999999998,
   },
   last_update_date: "2024-11-23T20:46:56.255000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "August 2020 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
         },
         {
            title: "Multiple Qualcomm Product Buffer Error Vulnerability Fix",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=125377",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010698",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-040",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-787",
            trust: 1,
         },
         {
            problemtype: "CWE-367",
            trust: 1,
         },
         {
            problemtype: "Time-of-check Time-of-use (TOCTOU) Race condition (CWE-367) [NVD Evaluation ]",
            trust: 0.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010698",
         },
         {
            db: "NVD",
            id: "CVE-2020-3619",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.6,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
         },
         {
            trust: 1,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
         },
         {
            trust: 0.8,
            url: "https://nvd.nist.gov/vuln/detail/cve-2020-3619",
         },
         {
            trust: 0.6,
            url: "https://source.android.com/security/bulletin/2020-08-01",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-pixel-multiple-vulnerabilities-of-august-2020-32996",
         },
         {
            trust: 0.6,
            url: "https://www.auscert.org.au/bulletins/esb-2020.2661/",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010698",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-040",
         },
         {
            db: "NVD",
            id: "CVE-2020-3619",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010698",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-040",
         },
         {
            db: "NVD",
            id: "CVE-2020-3619",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2021-02-01T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2020-010698",
         },
         {
            date: "2020-08-03T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202008-040",
         },
         {
            date: "2020-09-08T10:15:14.983000",
            db: "NVD",
            id: "CVE-2020-3619",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2021-02-01T08:35:00",
            db: "JVNDB",
            id: "JVNDB-2020-010698",
         },
         {
            date: "2020-08-05T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202008-040",
         },
         {
            date: "2024-11-21T05:31:25.180000",
            db: "NVD",
            id: "CVE-2020-3619",
         },
      ],
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon  In the product Time-of-check Time-of-use (TOCTOU)  Race condition vulnerabilities",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010698",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "buffer error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202008-040",
         },
      ],
      trust: 0.6,
   },
}

var-201907-0560
Vulnerability from variot

Buffer overflow occurs when emulated RPMB is used due to sector size assumptions in the TA rollback protection logic. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130. plural Snapdragon The product contains a buffer error vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. An attacker can exploit these issues to perform unauthorized actions. This may aid in further attacks. These issues are being tracked by Android Bug IDs A-129766496, A-129766125, A-122473271, A-122474808, A-122472479, A-122473168, A-122473304, A-122473496, A-122473989, A-129766432, A-129766099 and A-129766299. Qualcomm MDM9206 is a central processing unit (CPU) product of Qualcomm (Qualcomm). A buffer error vulnerability exists in the QTEE in several Qualcomm products. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. Attackers can exploit this vulnerability to cause buffer overflow or heap overflow, etc

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201907-0560",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "sd 632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 8cx",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 427",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 835",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 425",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820a",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "snapdragon high med 2016",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9655",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 435",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 412",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 430",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 712",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 410",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 625",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9655",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "215",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 410",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 412",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "pixel xl",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "pixel c",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "pixel",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "nexus player",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "9",
         },
         {
            model: "nexus 6p",
            scope: null,
            trust: 0.3,
            vendor: "google",
            version: null,
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "6",
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "5x",
         },
         {
            model: "android",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
      ],
      sources: [
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006966",
         },
         {
            db: "NVD",
            id: "CVE-2019-2235",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9206_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9607_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9650_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9655_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:msm8996au_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs404_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs605_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qualcomm_215_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sd_410_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sd_412_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-006966",
         },
      ],
   },
   credits: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/credits#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "The vendor reported these issues.",
      sources: [
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-086",
         },
      ],
      trust: 0.9,
   },
   cve: "CVE-2019-2235",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "PARTIAL",
                  baseScore: 4.6,
                  confidentialityImpact: "PARTIAL",
                  exploitabilityScore: 3.9,
                  id: "CVE-2019-2235",
                  impactScore: 6.4,
                  integrityImpact: "PARTIAL",
                  severity: "MEDIUM",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "VULHUB",
                  availabilityImpact: "PARTIAL",
                  baseScore: 4.6,
                  confidentialityImpact: "PARTIAL",
                  exploitabilityScore: 3.9,
                  id: "VHN-153670",
                  impactScore: 6.4,
                  integrityImpact: "PARTIAL",
                  severity: "MEDIUM",
                  trust: 0.1,
                  vectorString: "AV:L/AC:L/AU:N/C:P/I:P/A:P",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2019-2235",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1.8,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2019-2235",
                  trust: 1,
                  value: "HIGH",
               },
               {
                  author: "NVD",
                  id: "CVE-2019-2235",
                  trust: 0.8,
                  value: "High",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201907-086",
                  trust: 0.6,
                  value: "HIGH",
               },
               {
                  author: "VULHUB",
                  id: "VHN-153670",
                  trust: 0.1,
                  value: "MEDIUM",
               },
            ],
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153670",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006966",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-086",
         },
         {
            db: "NVD",
            id: "CVE-2019-2235",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "Buffer overflow occurs when emulated RPMB is used due to sector size assumptions in the TA rollback protection logic. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130. plural Snapdragon The product contains a buffer error vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. \nAn attacker can exploit these issues to perform unauthorized actions. This may aid in further attacks. \nThese issues are being tracked by Android Bug IDs A-129766496, A-129766125, A-122473271, A-122474808, A-122472479, A-122473168, A-122473304, A-122473496, A-122473989, A-129766432, A-129766099 and A-129766299. Qualcomm MDM9206 is a central processing unit (CPU) product of Qualcomm (Qualcomm). A buffer error vulnerability exists in the QTEE in several Qualcomm products. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. Attackers can exploit this vulnerability to cause buffer overflow or heap overflow, etc",
      sources: [
         {
            db: "NVD",
            id: "CVE-2019-2235",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006966",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "VULHUB",
            id: "VHN-153670",
         },
      ],
      trust: 1.98,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2019-2235",
            trust: 2.8,
         },
         {
            db: "BID",
            id: "108986",
            trust: 0.9,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006966",
            trust: 0.8,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-086",
            trust: 0.7,
         },
         {
            db: "VULHUB",
            id: "VHN-153670",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153670",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006966",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-086",
         },
         {
            db: "NVD",
            id: "CVE-2019-2235",
         },
      ],
   },
   id: "VAR-201907-0560",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153670",
         },
      ],
      trust: 0.01,
   },
   last_update_date: "2024-11-23T21:37:05.549000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "July 2019 Qualcomm Technologies, Inc. Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            title: "Multiple Qualcomm Product Buffer Error Vulnerability Fix",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=94320",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-006966",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-086",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-119",
            trust: 1.9,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153670",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006966",
         },
         {
            db: "NVD",
            id: "CVE-2019-2235",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.7,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2019-2235",
         },
         {
            trust: 0.9,
            url: "http://code.google.com/android/",
         },
         {
            trust: 0.9,
            url: "http://www.qualcomm.com/",
         },
         {
            trust: 0.9,
            url: "https://source.android.com/security/bulletin/2019-07-01.html",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-2235",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-july-2019-29673",
         },
         {
            trust: 0.6,
            url: "https://www.securityfocus.com/bid/108986",
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153670",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006966",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-086",
         },
         {
            db: "NVD",
            id: "CVE-2019-2235",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "VULHUB",
            id: "VHN-153670",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006966",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-086",
         },
         {
            db: "NVD",
            id: "CVE-2019-2235",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2019-07-25T00:00:00",
            db: "VULHUB",
            id: "VHN-153670",
         },
         {
            date: "2019-07-01T00:00:00",
            db: "BID",
            id: "108986",
         },
         {
            date: "2019-07-30T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-006966",
         },
         {
            date: "2019-07-02T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201907-086",
         },
         {
            date: "2019-07-25T17:15:11.940000",
            db: "NVD",
            id: "CVE-2019-2235",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2019-07-29T00:00:00",
            db: "VULHUB",
            id: "VHN-153670",
         },
         {
            date: "2019-07-01T00:00:00",
            db: "BID",
            id: "108986",
         },
         {
            date: "2019-07-30T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-006966",
         },
         {
            date: "2019-07-30T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201907-086",
         },
         {
            date: "2024-11-21T04:40:29.873000",
            db: "NVD",
            id: "CVE-2019-2235",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201907-086",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon Product buffer error vulnerability",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-006966",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "buffer error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201907-086",
         },
      ],
      trust: 0.6,
   },
}

var-201912-1446
Vulnerability from variot

Incorrect length used while validating the qsee log buffer sent from HLOS which could then lead to remap conflict in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ4019, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130. plural Qualcomm The product contains a classic buffer overflow vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm MDM9206 and so on are the products of American Qualcomm. MDM9206 is a central processing unit (CPU) product. MDM9607 is a central processing unit (CPU) product. SDX24 is a modem.

A buffer overflow vulnerability exists in the QTEE Logging Mechanism in several Qualcomm products. The vulnerability originates from a network system or product that incorrectly validates data boundaries when performing operations on memory, resulting in incorrect read and write operations to other associated memory locations. An attacker could use this vulnerability to cause a buffer overflow or heap overflow

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201912-1446",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "msm8909",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8953",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8917",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8998",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx24",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq4019",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr2130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca8081",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8940",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm7150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8098",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm6150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "snapdragon high med 2016",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8017",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qm215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8909w",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9207c",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8905",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8920",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8937",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8939",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8017",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096au",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8098",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq4019",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9150",
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9607",
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9650",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8909",
         },
         {
            model: "msm 8996au",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "605",
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "660",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "439",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "630",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "660",
         },
         {
            model: "sdx",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "24",
         },
         {
            model: "msm 8909w",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9206",
         },
         {
            model: "ipq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "4019",
         },
         {
            model: "ipq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8074",
         },
         {
            model: "snapdragon high med",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "2016",
         },
         {
            model: "sxr",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "1130",
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9205",
         },
         {
            model: "qca",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8081",
         },
         {
            model: "qcs",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "404",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8998",
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "845",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "636",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "670",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "710",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "845",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "850",
         },
         {
            model: "sm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "6150",
         },
         {
            model: "sm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "7150",
         },
         {
            model: "sm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8150",
         },
         {
            model: "sxr",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "2130",
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8017",
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8053",
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8009",
         },
         {
            model: "apq 8096au",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8098",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8905",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8917",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8920",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8937",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8939",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8940",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8953",
         },
         {
            model: "qm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "215",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "429",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "450",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "632",
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8096",
         },
         {
            model: "mdm 9207c",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8996",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16068",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012933",
         },
         {
            db: "NVD",
            id: "CVE-2019-2321",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8009_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8017_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8053_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8096_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8096au_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8098_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:ipq4019_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:ipq8074_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9150_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9205_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-012933",
         },
      ],
   },
   cve: "CVE-2019-2321",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "COMPLETE",
                  baseScore: 7.2,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 3.9,
                  id: "CVE-2019-2321",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 1.9,
                  vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "CNVD",
                  availabilityImpact: "COMPLETE",
                  baseScore: 7.2,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 3.9,
                  id: "CNVD-2020-16068",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 0.6,
                  vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2019-2321",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Local",
                  author: "NVD",
                  availabilityImpact: "High",
                  baseScore: 7.8,
                  baseSeverity: "High",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2019-2321",
                  impactScore: null,
                  integrityImpact: "High",
                  privilegesRequired: "Low",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2019-2321",
                  trust: 1,
                  value: "HIGH",
               },
               {
                  author: "NVD",
                  id: "CVE-2019-2321",
                  trust: 0.8,
                  value: "High",
               },
               {
                  author: "CNVD",
                  id: "CNVD-2020-16068",
                  trust: 0.6,
                  value: "HIGH",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201911-261",
                  trust: 0.6,
                  value: "HIGH",
               },
               {
                  author: "VULMON",
                  id: "CVE-2019-2321",
                  trust: 0.1,
                  value: "HIGH",
               },
            ],
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16068",
         },
         {
            db: "VULMON",
            id: "CVE-2019-2321",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012933",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201911-261",
         },
         {
            db: "NVD",
            id: "CVE-2019-2321",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "Incorrect length used while validating the qsee log buffer sent from HLOS which could then lead to remap conflict in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, IPQ4019, IPQ8074, MDM9150, MDM9205, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, QCA8081, QCS404, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, Snapdragon_High_Med_2016, SXR1130, SXR2130. plural Qualcomm The product contains a classic buffer overflow vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm MDM9206 and so on are the products of American Qualcomm. MDM9206 is a central processing unit (CPU) product. MDM9607 is a central processing unit (CPU) product. SDX24 is a modem. \n\r\n\r\nA buffer overflow vulnerability exists in the QTEE Logging Mechanism in several Qualcomm products. The vulnerability originates from a network system or product that incorrectly validates data boundaries when performing operations on memory, resulting in incorrect read and write operations to other associated memory locations. An attacker could use this vulnerability to cause a buffer overflow or heap overflow",
      sources: [
         {
            db: "NVD",
            id: "CVE-2019-2321",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012933",
         },
         {
            db: "CNVD",
            id: "CNVD-2020-16068",
         },
         {
            db: "VULMON",
            id: "CVE-2019-2321",
         },
      ],
      trust: 2.25,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2019-2321",
            trust: 3.1,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012933",
            trust: 0.8,
         },
         {
            db: "CNVD",
            id: "CNVD-2020-16068",
            trust: 0.6,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201911-261",
            trust: 0.6,
         },
         {
            db: "VULMON",
            id: "CVE-2019-2321",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16068",
         },
         {
            db: "VULMON",
            id: "CVE-2019-2321",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012933",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201911-261",
         },
         {
            db: "NVD",
            id: "CVE-2019-2321",
         },
      ],
   },
   id: "VAR-201912-1446",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16068",
         },
      ],
      trust: 1.6,
   },
   iot_taxonomy: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            category: [
               "Network device",
            ],
            sub_category: null,
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16068",
         },
      ],
   },
   last_update_date: "2024-11-23T22:44:46.315000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "November 2019 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
         },
         {
            title: "Patch for Multiple Qualcomm Product Buffer Overflow Vulnerabilities (CNVD-2020-16068)",
            trust: 0.6,
            url: "https://www.cnvd.org.cn/patchInfo/show/207853",
         },
         {
            title: "Multiple Qualcomm Product Buffer Error Vulnerability Fix",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=105190",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16068",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012933",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201911-261",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-120",
            trust: 1.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-012933",
         },
         {
            db: "NVD",
            id: "CVE-2019-2321",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 2.9,
            url: "https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2019-2321",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-2321",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-pixel-multiple-vulnerabilities-of-november-2019-30795",
         },
         {
            trust: 0.1,
            url: "https://cwe.mitre.org/data/definitions/120.html",
         },
         {
            trust: 0.1,
            url: "https://nvd.nist.gov",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16068",
         },
         {
            db: "VULMON",
            id: "CVE-2019-2321",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012933",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201911-261",
         },
         {
            db: "NVD",
            id: "CVE-2019-2321",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "CNVD",
            id: "CNVD-2020-16068",
         },
         {
            db: "VULMON",
            id: "CVE-2019-2321",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012933",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201911-261",
         },
         {
            db: "NVD",
            id: "CVE-2019-2321",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-09T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-16068",
         },
         {
            date: "2019-12-12T00:00:00",
            db: "VULMON",
            id: "CVE-2019-2321",
         },
         {
            date: "2019-12-17T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-012933",
         },
         {
            date: "2019-11-06T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201911-261",
         },
         {
            date: "2019-12-12T09:15:13.190000",
            db: "NVD",
            id: "CVE-2019-2321",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-09T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-16068",
         },
         {
            date: "2019-12-13T00:00:00",
            db: "VULMON",
            id: "CVE-2019-2321",
         },
         {
            date: "2019-12-17T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-012933",
         },
         {
            date: "2020-06-24T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201911-261",
         },
         {
            date: "2024-11-21T04:40:42.180000",
            db: "NVD",
            id: "CVE-2019-2321",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201911-261",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Qualcomm Classic buffer overflow vulnerability in products",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-012933",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "buffer error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201911-261",
         },
      ],
      trust: 0.6,
   },
}

var-202009-1390
Vulnerability from variot

u'Channel name string which has been read from shared memory is potentially subjected to string manipulations but not validated for NULL termination can results into memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Snapdragon The product contains an input verification vulnerability.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-202009-1390",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "msm8909",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8953",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq6018",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "nicobar",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qm215",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "kamorta",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8250",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8937",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs610",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm450",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9645",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx24",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9655",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9640",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc7180",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8940",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "bitra",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx55",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda845",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm636",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096au",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm850",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa415m",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm7150",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8920",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcm2150",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa6155p",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcn7605",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8017",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8905",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx20",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm6150",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc8180x",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8917",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8998",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca8081",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm632",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr2130",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429w",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "saipan",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8098",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "rennell",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm670",
            scope: "eq",
            trust: 2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8017",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8053",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8096au",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8098",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "bitra",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq6018",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq8074",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "kamorta",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9150",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010701",
         },
         {
            db: "NVD",
            id: "CVE-2020-3622",
         },
      ],
   },
   cve: "CVE-2020-3622",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "PARTIAL",
                  baseScore: 4.6,
                  confidentialityImpact: "PARTIAL",
                  exploitabilityScore: 3.9,
                  id: "CVE-2020-3622",
                  impactScore: 6.4,
                  integrityImpact: "PARTIAL",
                  severity: "MEDIUM",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2020-3622",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Local",
                  author: "NVD",
                  availabilityImpact: "High",
                  baseScore: 7.8,
                  baseSeverity: "High",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2020-3622",
                  impactScore: null,
                  integrityImpact: "High",
                  privilegesRequired: "Low",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2020-3622",
                  trust: 1,
                  value: "HIGH",
               },
               {
                  author: "NVD",
                  id: "CVE-2020-3622",
                  trust: 0.8,
                  value: "High",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010701",
         },
         {
            db: "NVD",
            id: "CVE-2020-3622",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "u'Channel name string which has been read from shared memory is potentially subjected to string manipulations but not validated for NULL termination can results into memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Snapdragon The product contains an input verification vulnerability.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state",
      sources: [
         {
            db: "NVD",
            id: "CVE-2020-3622",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-010701",
         },
      ],
      trust: 1.62,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2020-3622",
            trust: 2.4,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-010701",
            trust: 0.8,
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-030",
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010701",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-030",
         },
         {
            db: "NVD",
            id: "CVE-2020-3622",
         },
      ],
   },
   id: "VAR-202009-1390",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VARIoT devices database",
            id: null,
         },
      ],
      trust: 0.2491935133333333,
   },
   last_update_date: "2024-11-23T22:33:17.955000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "August 2020 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
         },
         {
            title: "Multiple Qualcomm Product input verification error vulnerability fixes",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=125367",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010701",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-030",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-787",
            trust: 1,
         },
         {
            problemtype: "Incorrect input confirmation (CWE-20) [NVD Evaluation ]",
            trust: 0.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010701",
         },
         {
            db: "NVD",
            id: "CVE-2020-3622",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.6,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
         },
         {
            trust: 1,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
         },
         {
            trust: 0.8,
            url: "https://nvd.nist.gov/vuln/detail/cve-2020-3622",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010701",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-030",
         },
         {
            db: "NVD",
            id: "CVE-2020-3622",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010701",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-030",
         },
         {
            db: "NVD",
            id: "CVE-2020-3622",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2021-02-01T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2020-010701",
         },
         {
            date: "2020-08-03T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202008-030",
         },
         {
            date: "2020-09-08T10:15:15.217000",
            db: "NVD",
            id: "CVE-2020-3622",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2021-02-01T08:35:00",
            db: "JVNDB",
            id: "JVNDB-2020-010701",
         },
         {
            date: "2020-08-04T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202008-030",
         },
         {
            date: "2024-11-21T05:31:25.677000",
            db: "NVD",
            id: "CVE-2020-3622",
         },
      ],
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon  Product input verification vulnerabilities",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010701",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "input validation error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202008-030",
         },
      ],
      trust: 0.6,
   },
}

var-201911-1184
Vulnerability from variot

Use after free issue in cleanup routine due to missing pointer sanitization for a failed start of a trusted application. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130. plural Snapdragon The product contains a vulnerability related to the use of released memory.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm MDM9205 and so on are a kind of central processing unit (CPU) products of Qualcomm of the United States.

QTEE in multiple Qualcomm products has a resource management error vulnerability. The vulnerability stems from improper management of system resources (such as memory, disk space, files, etc.) by network systems or products. An attacker could use this vulnerability to cause Trustzone to perform arbitrary memory reads

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201911-1184",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "sxr1130",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm7150",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr2130",
            scope: "eq",
            trust: 1.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx55",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm6150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda845",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm 670",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx55",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm 6150",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm 7150",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "605",
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9205",
         },
         {
            model: "sxr",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "1130",
         },
         {
            model: "qcs",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "404",
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "845",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "670",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "710",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "845",
         },
         {
            model: "sm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "6150",
         },
         {
            model: "sm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "7150",
         },
         {
            model: "sm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8150",
         },
         {
            model: "sxr",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "2130",
         },
         {
            model: "sdx",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "55",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16061",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012274",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-317",
         },
         {
            db: "NVD",
            id: "CVE-2019-2329",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9205_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs404_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs605_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sda845_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sdm670_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sdm_710_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sdm845_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sdx55_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sm6150_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sm7150_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-012274",
         },
      ],
   },
   cve: "CVE-2019-2329",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "COMPLETE",
                  baseScore: 7.2,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 3.9,
                  id: "CVE-2019-2329",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "NETWORK",
                  authentication: "NONE",
                  author: "CNVD",
                  availabilityImpact: "PARTIAL",
                  baseScore: 6.4,
                  confidentialityImpact: "NONE",
                  exploitabilityScore: 10,
                  id: "CNVD-2020-16061",
                  impactScore: 4.9,
                  integrityImpact: "PARTIAL",
                  severity: "MEDIUM",
                  trust: 0.6,
                  vectorString: "AV:N/AC:L/Au:N/C:N/I:P/A:P",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2019-2329",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Local",
                  author: "NVD",
                  availabilityImpact: "High",
                  baseScore: 7.8,
                  baseSeverity: "High",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2019-2329",
                  impactScore: null,
                  integrityImpact: "High",
                  privilegesRequired: "Low",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2019-2329",
                  trust: 1,
                  value: "HIGH",
               },
               {
                  author: "NVD",
                  id: "CVE-2019-2329",
                  trust: 0.8,
                  value: "High",
               },
               {
                  author: "CNVD",
                  id: "CNVD-2020-16061",
                  trust: 0.6,
                  value: "MEDIUM",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201910-317",
                  trust: 0.6,
                  value: "MEDIUM",
               },
            ],
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16061",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012274",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-317",
         },
         {
            db: "NVD",
            id: "CVE-2019-2329",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "Use after free issue in cleanup routine due to missing pointer sanitization for a failed start of a trusted application. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, QCS605, SDA845, SDM670, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130. plural Snapdragon The product contains a vulnerability related to the use of released memory.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm MDM9205 and so on are a kind of central processing unit (CPU) products of Qualcomm of the United States. \n\r\n\r\nQTEE in multiple Qualcomm products has a resource management error vulnerability. The vulnerability stems from improper management of system resources (such as memory, disk space, files, etc.) by network systems or products. An attacker could use this vulnerability to cause Trustzone to perform arbitrary memory reads",
      sources: [
         {
            db: "NVD",
            id: "CVE-2019-2329",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012274",
         },
         {
            db: "CNVD",
            id: "CNVD-2020-16061",
         },
      ],
      trust: 2.16,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2019-2329",
            trust: 3,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012274",
            trust: 0.8,
         },
         {
            db: "CNVD",
            id: "CNVD-2020-16061",
            trust: 0.6,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-317",
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16061",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012274",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-317",
         },
         {
            db: "NVD",
            id: "CVE-2019-2329",
         },
      ],
   },
   id: "VAR-201911-1184",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16061",
         },
      ],
      trust: 1.6,
   },
   iot_taxonomy: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            category: [
               "Network device",
            ],
            sub_category: null,
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16061",
         },
      ],
   },
   last_update_date: "2024-11-23T23:08:12.754000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "October 2019 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
         },
         {
            title: "Patch for Multiple Qualcomm Product Resource Management Error Vulnerabilities (CNVD-2020-16061)",
            trust: 0.6,
            url: "https://www.cnvd.org.cn/patchInfo/show/207831",
         },
         {
            title: "Multiple Qualcomm Product security vulnerabilities",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=99021",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16061",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012274",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-317",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-416",
            trust: 1.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-012274",
         },
         {
            db: "NVD",
            id: "CVE-2019-2329",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 2.2,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2019-2329",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-2329",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-pixel-multiple-vulnerabilities-of-october-2019-30549",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16061",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012274",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-317",
         },
         {
            db: "NVD",
            id: "CVE-2019-2329",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "CNVD",
            id: "CNVD-2020-16061",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012274",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-317",
         },
         {
            db: "NVD",
            id: "CVE-2019-2329",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-09T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-16061",
         },
         {
            date: "2019-11-28T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-012274",
         },
         {
            date: "2019-10-08T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201910-317",
         },
         {
            date: "2019-11-21T15:15:16.307000",
            db: "NVD",
            id: "CVE-2019-2329",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-09T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-16061",
         },
         {
            date: "2019-11-28T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-012274",
         },
         {
            date: "2019-12-04T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201910-317",
         },
         {
            date: "2024-11-21T04:40:43.497000",
            db: "NVD",
            id: "CVE-2019-2329",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201910-317",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon Vulnerability in using freed memory in products",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-012274",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "resource management error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201910-317",
         },
      ],
      trust: 0.6,
   },
}

var-201907-1111
Vulnerability from variot

XBL_SEC image authentication and other crypto related validations are accessible to a compromised OEM XBL Loader due to missing lock at XBL_SEC stage.. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130. plural Snapdragon The product contains an access control vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. An attacker can exploit these issues to perform unauthorized actions. This may aid in further attacks. These issues are being tracked by Android Bug IDs A-120486477, A-120485121, A-120487163, A-122473494, and A-123998003. Qualcomm MDM9206 is a central processing unit (CPU) product of Qualcomm (Qualcomm). An access control error vulnerability exists in several Qualcomm products. This vulnerability stems from network systems or products not properly restricting access to resources from unauthorized roles

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201907-1111",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "sd 632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 8cx",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 427",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 835",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 425",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820a",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "snapdragon high med 2016",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9655",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 435",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 855",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 412",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 430",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 712",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 410",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 625",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9655",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "215",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 410",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 412",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "pixel xl",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "pixel c",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "pixel",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "nexus player",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "9",
         },
         {
            model: "nexus 6p",
            scope: null,
            trust: 0.3,
            vendor: "google",
            version: null,
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "6",
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "5x",
         },
         {
            model: "android",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
      ],
      sources: [
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015882",
         },
         {
            db: "NVD",
            id: "CVE-2018-13896",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9206_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9607_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9650_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9655_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:msm8996au_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs404_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs605_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qualcomm_215_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sd_410_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sd_412_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2018-015882",
         },
      ],
   },
   credits: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/credits#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "The vendor reported these issues.",
      sources: [
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-073",
         },
      ],
      trust: 0.9,
   },
   cve: "CVE-2018-13896",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "COMPLETE",
                  baseScore: 7.2,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 3.9,
                  id: "CVE-2018-13896",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 1.9,
                  vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "VULHUB",
                  availabilityImpact: "COMPLETE",
                  baseScore: 7.2,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 3.9,
                  id: "VHN-124001",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 0.1,
                  vectorString: "AV:L/AC:L/AU:N/C:C/I:C/A:C",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2018-13896",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1.8,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2018-13896",
                  trust: 1,
                  value: "HIGH",
               },
               {
                  author: "NVD",
                  id: "CVE-2018-13896",
                  trust: 0.8,
                  value: "High",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201906-073",
                  trust: 0.6,
                  value: "HIGH",
               },
               {
                  author: "VULHUB",
                  id: "VHN-124001",
                  trust: 0.1,
                  value: "HIGH",
               },
               {
                  author: "VULMON",
                  id: "CVE-2018-13896",
                  trust: 0.1,
                  value: "HIGH",
               },
            ],
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-124001",
         },
         {
            db: "VULMON",
            id: "CVE-2018-13896",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015882",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-073",
         },
         {
            db: "NVD",
            id: "CVE-2018-13896",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "XBL_SEC image authentication and other crypto related validations are accessible to a compromised OEM XBL Loader due to missing lock at XBL_SEC stage.. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130. plural Snapdragon The product contains an access control vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. \nAn attacker can exploit these issues to perform unauthorized actions. This may aid in further attacks. \nThese issues are being tracked by Android Bug IDs A-120486477, A-120485121, A-120487163, A-122473494, and A-123998003. Qualcomm MDM9206 is a central processing unit (CPU) product of Qualcomm (Qualcomm). An access control error vulnerability exists in several Qualcomm products. This vulnerability stems from network systems or products not properly restricting access to resources from unauthorized roles",
      sources: [
         {
            db: "NVD",
            id: "CVE-2018-13896",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015882",
         },
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "VULHUB",
            id: "VHN-124001",
         },
         {
            db: "VULMON",
            id: "CVE-2018-13896",
         },
      ],
      trust: 2.07,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2018-13896",
            trust: 2.9,
         },
         {
            db: "BID",
            id: "108546",
            trust: 1,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015882",
            trust: 0.8,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-073",
            trust: 0.7,
         },
         {
            db: "VULHUB",
            id: "VHN-124001",
            trust: 0.1,
         },
         {
            db: "VULMON",
            id: "CVE-2018-13896",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-124001",
         },
         {
            db: "VULMON",
            id: "CVE-2018-13896",
         },
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015882",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-073",
         },
         {
            db: "NVD",
            id: "CVE-2018-13896",
         },
      ],
   },
   id: "VAR-201907-1111",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VULHUB",
            id: "VHN-124001",
         },
      ],
      trust: 0.01,
   },
   last_update_date: "2024-11-23T21:52:06.772000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "June 2019 Qualcomm Technologies, Inc. Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            title: "Multiple Qualcomm Product access control error vulnerability fixes",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=93162",
         },
         {
            title: "The Register",
            trust: 0.1,
            url: "https://www.theregister.co.uk/2019/06/05/android_june_patch/",
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2018-13896",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015882",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-073",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-284",
            trust: 1.9,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-124001",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015882",
         },
         {
            db: "NVD",
            id: "CVE-2018-13896",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2018-13896",
         },
         {
            trust: 0.9,
            url: "http://code.google.com/android/",
         },
         {
            trust: 0.9,
            url: "http://www.qualcomm.com/",
         },
         {
            trust: 0.9,
            url: "https://source.android.com/security/bulletin/2019-06-01.html",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-13896",
         },
         {
            trust: 0.7,
            url: "https://www.securityfocus.com/bid/108546",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-june-2019-29461",
         },
         {
            trust: 0.1,
            url: "https://cwe.mitre.org/data/definitions/284.html",
         },
         {
            trust: 0.1,
            url: "https://nvd.nist.gov",
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-124001",
         },
         {
            db: "VULMON",
            id: "CVE-2018-13896",
         },
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015882",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-073",
         },
         {
            db: "NVD",
            id: "CVE-2018-13896",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "VULHUB",
            id: "VHN-124001",
         },
         {
            db: "VULMON",
            id: "CVE-2018-13896",
         },
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015882",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-073",
         },
         {
            db: "NVD",
            id: "CVE-2018-13896",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2019-07-22T00:00:00",
            db: "VULHUB",
            id: "VHN-124001",
         },
         {
            date: "2019-07-22T00:00:00",
            db: "VULMON",
            id: "CVE-2018-13896",
         },
         {
            date: "2019-06-03T00:00:00",
            db: "BID",
            id: "108546",
         },
         {
            date: "2019-07-29T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2018-015882",
         },
         {
            date: "2019-06-03T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201906-073",
         },
         {
            date: "2019-07-22T14:15:11.080000",
            db: "NVD",
            id: "CVE-2018-13896",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2019-07-25T00:00:00",
            db: "VULHUB",
            id: "VHN-124001",
         },
         {
            date: "2019-07-25T00:00:00",
            db: "VULMON",
            id: "CVE-2018-13896",
         },
         {
            date: "2019-06-03T00:00:00",
            db: "BID",
            id: "108546",
         },
         {
            date: "2019-07-29T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2018-015882",
         },
         {
            date: "2019-07-26T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201906-073",
         },
         {
            date: "2024-11-21T03:48:16.137000",
            db: "NVD",
            id: "CVE-2018-13896",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201906-073",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon Access control vulnerabilities in products",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2018-015882",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "access control error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201906-073",
         },
      ],
      trust: 0.6,
   },
}

var-202011-0210
Vulnerability from variot

u'Possible buffer overflow in MHI driver due to lack of input parameter validation of EOT events received from MHI device side' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8917, MSM8953, Nicobar, QCA6390, QCM2150, QCS404, QCS405, QCS605, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130. plural Qualcomm The product contains a classic buffer overflow vulnerability.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-202011-0210",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "msm8953",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc8180x",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8917",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq6018",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "kamorta",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa8155p",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "agatti",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8250",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qrb5165",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq4019",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr2130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa515m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcm2150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx55",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "saipan",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm7150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm6150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa415m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429w",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6390",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8064",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "bitra",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa6155p",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qm215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "nicobar",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq5018",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "rennell",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "bitra",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "agatti",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8009",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq5018",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq6018",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq4019",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq8064",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq8074",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "kamorta",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012937",
         },
         {
            db: "NVD",
            id: "CVE-2020-11162",
         },
      ],
   },
   cve: "CVE-2020-11162",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "PARTIAL",
                  baseScore: 4.6,
                  confidentialityImpact: "PARTIAL",
                  exploitabilityScore: 3.9,
                  id: "CVE-2020-11162",
                  impactScore: 6.4,
                  integrityImpact: "PARTIAL",
                  severity: "MEDIUM",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2020-11162",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Local",
                  author: "NVD",
                  availabilityImpact: "High",
                  baseScore: 7.8,
                  baseSeverity: "High",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2020-11162",
                  impactScore: null,
                  integrityImpact: "High",
                  privilegesRequired: "Low",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2020-11162",
                  trust: 1,
                  value: "HIGH",
               },
               {
                  author: "NVD",
                  id: "CVE-2020-11162",
                  trust: 0.8,
                  value: "High",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-202010-308",
                  trust: 0.6,
                  value: "HIGH",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012937",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-308",
         },
         {
            db: "NVD",
            id: "CVE-2020-11162",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "u'Possible buffer overflow in MHI driver due to lack of input parameter validation of EOT events received from MHI device side' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8917, MSM8953, Nicobar, QCA6390, QCM2150, QCS404, QCS405, QCS605, QM215, QRB5165, Rennell, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM710, SDM845, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130. plural Qualcomm The product contains a classic buffer overflow vulnerability.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state",
      sources: [
         {
            db: "NVD",
            id: "CVE-2020-11162",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012937",
         },
         {
            db: "VULMON",
            id: "CVE-2020-11162",
         },
      ],
      trust: 1.71,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2020-11162",
            trust: 2.5,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012937",
            trust: 0.8,
         },
         {
            db: "AUSCERT",
            id: "ESB-2020.3453",
            trust: 0.6,
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-308",
            trust: 0.6,
         },
         {
            db: "VULMON",
            id: "CVE-2020-11162",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-11162",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012937",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-308",
         },
         {
            db: "NVD",
            id: "CVE-2020-11162",
         },
      ],
   },
   id: "VAR-202011-0210",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VARIoT devices database",
            id: null,
         },
      ],
      trust: 0.16046866999999998,
   },
   last_update_date: "2024-11-23T21:06:36.824000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "October 2020 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
         },
         {
            title: "Google Android Security vulnerabilities",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=129909",
         },
         {
            title: "Threatpost",
            trust: 0.1,
            url: "https://threatpost.com/google-android-system-flaws/159948/",
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-11162",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012937",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-308",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-120",
            trust: 1,
         },
         {
            problemtype: "Classic buffer overflow (CWE-120) [NVD Evaluation ]",
            trust: 0.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012937",
         },
         {
            db: "NVD",
            id: "CVE-2020-11162",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.7,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
         },
         {
            trust: 1.6,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2020-11162",
         },
         {
            trust: 0.6,
            url: "https://www.auscert.org.au/bulletins/esb-2020.3453/",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-october-2020-33491",
         },
         {
            trust: 0.1,
            url: "https://nvd.nist.gov",
         },
         {
            trust: 0.1,
            url: "https://threatpost.com/google-android-system-flaws/159948/",
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-11162",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012937",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-308",
         },
         {
            db: "NVD",
            id: "CVE-2020-11162",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "VULMON",
            id: "CVE-2020-11162",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012937",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-308",
         },
         {
            db: "NVD",
            id: "CVE-2020-11162",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-11-02T00:00:00",
            db: "VULMON",
            id: "CVE-2020-11162",
         },
         {
            date: "2021-06-15T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2020-012937",
         },
         {
            date: "2020-10-06T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202010-308",
         },
         {
            date: "2020-11-02T07:15:13.873000",
            db: "NVD",
            id: "CVE-2020-11162",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-11-09T00:00:00",
            db: "VULMON",
            id: "CVE-2020-11162",
         },
         {
            date: "2021-06-15T06:01:00",
            db: "JVNDB",
            id: "JVNDB-2020-012937",
         },
         {
            date: "2021-08-16T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202010-308",
         },
         {
            date: "2024-11-21T04:56:59.210000",
            db: "NVD",
            id: "CVE-2020-11162",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202010-308",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Qualcomm  Classic buffer overflow vulnerability in the product",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012937",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "other",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202010-308",
         },
      ],
      trust: 0.6,
   },
}

var-202011-0216
Vulnerability from variot

u'Array index underflow issue in adsp driver due to improper check of channel id before used as array index.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8953, MSM8996AU, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM8150, SM8250, SXR1130, SXR2130. plural Qualcomm The product contains a vulnerability in array index validation.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. The Qualcomm chip is a chip of Qualcomm (Qualcomm). A way to miniaturize circuits (mainly including semiconductor equipment, but also passive components, etc.) and often manufactured on the surface of semiconductor wafers. A number of Qualcomm products have an input validation error vulnerability, which stems from improper check of the channel id before using the array index in the adsp driver

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-202011-0216",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "msm8953",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc8180x",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx24",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq6018",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "kamorta",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa8155p",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "agatti",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8250",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr2130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq4019",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9640",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca9531",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa515m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcm2150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx55",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "saipan",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8098",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm6150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa415m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429w",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6390",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8064",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "bitra",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8017",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa6155p",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8909w",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8905",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx20",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq5018",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "bitra",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8017",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "agatti",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8009",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq5018",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8053",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq6018",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq4019",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8096au",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8098",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012922",
         },
         {
            db: "NVD",
            id: "CVE-2020-11174",
         },
      ],
   },
   cve: "CVE-2020-11174",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "PARTIAL",
                  baseScore: 4.6,
                  confidentialityImpact: "PARTIAL",
                  exploitabilityScore: 3.9,
                  id: "CVE-2020-11174",
                  impactScore: 6.4,
                  integrityImpact: "PARTIAL",
                  severity: "MEDIUM",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2020-11174",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Local",
                  author: "NVD",
                  availabilityImpact: "High",
                  baseScore: 7.8,
                  baseSeverity: "High",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2020-11174",
                  impactScore: null,
                  integrityImpact: "High",
                  privilegesRequired: "Low",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2020-11174",
                  trust: 1,
                  value: "HIGH",
               },
               {
                  author: "NVD",
                  id: "CVE-2020-11174",
                  trust: 0.8,
                  value: "High",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-202010-309",
                  trust: 0.6,
                  value: "HIGH",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012922",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-309",
         },
         {
            db: "NVD",
            id: "CVE-2020-11174",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "u'Array index underflow issue in adsp driver due to improper check of channel id before used as array index.' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8953, MSM8996AU, QCA6390, QCA9531, QCM2150, QCS404, QCS405, QCS605, SA415M, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM8150, SM8250, SXR1130, SXR2130. plural Qualcomm The product contains a vulnerability in array index validation.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. The Qualcomm chip is a chip of Qualcomm (Qualcomm). A way to miniaturize circuits (mainly including semiconductor equipment, but also passive components, etc.) and often manufactured on the surface of semiconductor wafers. \nA number of Qualcomm products have an input validation error vulnerability, which stems from improper check of the channel id before using the array index in the adsp driver",
      sources: [
         {
            db: "NVD",
            id: "CVE-2020-11174",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012922",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-309",
         },
         {
            db: "VULMON",
            id: "CVE-2020-11174",
         },
      ],
      trust: 2.25,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2020-11174",
            trust: 2.5,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012922",
            trust: 0.8,
         },
         {
            db: "AUSCERT",
            id: "ESB-2020.3453",
            trust: 0.6,
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-309",
            trust: 0.6,
         },
         {
            db: "VULMON",
            id: "CVE-2020-11174",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-11174",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012922",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-309",
         },
         {
            db: "NVD",
            id: "CVE-2020-11174",
         },
      ],
   },
   id: "VAR-202011-0216",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VARIoT devices database",
            id: null,
         },
      ],
      trust: 0.29294273,
   },
   last_update_date: "2024-11-23T20:02:07.139000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "October 2020 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
         },
         {
            title: "Google Android Security vulnerabilities",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=129910",
         },
         {
            title: "Threatpost",
            trust: 0.1,
            url: "https://threatpost.com/google-android-system-flaws/159948/",
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-11174",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012922",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-309",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-129",
            trust: 1,
         },
         {
            problemtype: "Improper validation of array indexes (CWE-129) [NVD Evaluation ]",
            trust: 0.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012922",
         },
         {
            db: "NVD",
            id: "CVE-2020-11174",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.7,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
         },
         {
            trust: 1.6,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2020-11174",
         },
         {
            trust: 0.6,
            url: "https://www.auscert.org.au/bulletins/esb-2020.3453/",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-october-2020-33491",
         },
         {
            trust: 0.1,
            url: "https://nvd.nist.gov",
         },
         {
            trust: 0.1,
            url: "https://threatpost.com/google-android-system-flaws/159948/",
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-11174",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012922",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-309",
         },
         {
            db: "NVD",
            id: "CVE-2020-11174",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "VULMON",
            id: "CVE-2020-11174",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012922",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-309",
         },
         {
            db: "NVD",
            id: "CVE-2020-11174",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-11-02T00:00:00",
            db: "VULMON",
            id: "CVE-2020-11174",
         },
         {
            date: "2021-06-15T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2020-012922",
         },
         {
            date: "2020-10-06T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202010-309",
         },
         {
            date: "2020-11-02T07:15:14.233000",
            db: "NVD",
            id: "CVE-2020-11174",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-11-06T00:00:00",
            db: "VULMON",
            id: "CVE-2020-11174",
         },
         {
            date: "2021-06-15T03:03:00",
            db: "JVNDB",
            id: "JVNDB-2020-012922",
         },
         {
            date: "2021-08-16T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202010-309",
         },
         {
            date: "2024-11-21T04:57:03.540000",
            db: "NVD",
            id: "CVE-2020-11174",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202010-309",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Qualcomm  Product index validation vulnerability",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012922",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "input validation error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202010-309",
         },
      ],
      trust: 0.6,
   },
}

var-202009-1283
Vulnerability from variot

u'Lack of check to ensure that the TX read index & RX write index that are read from shared memory are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Snapdragon The product contains a buffer error vulnerability.Information may be obtained

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-202009-1283",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "msm8909",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8953",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc8180x",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8917",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8998",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx24",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "kamorta",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8250",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs610",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr2130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9645",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9640",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9655",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca8081",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8940",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcm2150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx55",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "saipan",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm7150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8098",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm6150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa415m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429w",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "bitra",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa6155p",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qm215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcn7605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "nicobar",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8905",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8920",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx20",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "rennell",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc7180",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8937",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8053",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8096au",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8098",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "bitra",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "kamorta",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9150",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9206",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9640",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010700",
         },
         {
            db: "NVD",
            id: "CVE-2020-3621",
         },
      ],
   },
   cve: "CVE-2020-3621",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 4.9,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 3.9,
                  id: "CVE-2020-3621",
                  impactScore: 6.9,
                  integrityImpact: "NONE",
                  severity: "MEDIUM",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:C/I:N/A:N",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2020-3621",
                  impactScore: 3.6,
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Local",
                  author: "NVD",
                  availabilityImpact: "None",
                  baseScore: 5.5,
                  baseSeverity: "Medium",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2020-3621",
                  impactScore: null,
                  integrityImpact: "None",
                  privilegesRequired: "Low",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2020-3621",
                  trust: 1,
                  value: "MEDIUM",
               },
               {
                  author: "NVD",
                  id: "CVE-2020-3621",
                  trust: 0.8,
                  value: "Medium",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-202008-074",
                  trust: 0.6,
                  value: "MEDIUM",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010700",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-074",
         },
         {
            db: "NVD",
            id: "CVE-2020-3621",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "u'Lack of check to ensure that the TX read index & RX write index that are read from shared memory are less than the FIFO size results into memory corruption and potential information leakage' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Snapdragon The product contains a buffer error vulnerability.Information may be obtained",
      sources: [
         {
            db: "NVD",
            id: "CVE-2020-3621",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-010700",
         },
      ],
      trust: 1.62,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2020-3621",
            trust: 2.4,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-010700",
            trust: 0.8,
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-074",
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010700",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-074",
         },
         {
            db: "NVD",
            id: "CVE-2020-3621",
         },
      ],
   },
   id: "VAR-202009-1283",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VARIoT devices database",
            id: null,
         },
      ],
      trust: 0.2491935133333333,
   },
   last_update_date: "2024-11-23T23:07:49.152000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "August 2020 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
         },
         {
            title: "Multiple Qualcomm Product input verification error vulnerability fixes",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=125407",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010700",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-074",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-787",
            trust: 1,
         },
         {
            problemtype: "CWE-20",
            trust: 1,
         },
         {
            problemtype: "Buffer error (CWE-119) [NVD Evaluation ]",
            trust: 0.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010700",
         },
         {
            db: "NVD",
            id: "CVE-2020-3621",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.6,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
         },
         {
            trust: 1.6,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2020-3621",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-pixel-multiple-vulnerabilities-of-september-2020-33285",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010700",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-074",
         },
         {
            db: "NVD",
            id: "CVE-2020-3621",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010700",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-074",
         },
         {
            db: "NVD",
            id: "CVE-2020-3621",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2021-02-01T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2020-010700",
         },
         {
            date: "2020-08-03T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202008-074",
         },
         {
            date: "2020-09-08T10:15:15.107000",
            db: "NVD",
            id: "CVE-2020-3621",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2021-02-01T08:35:00",
            db: "JVNDB",
            id: "JVNDB-2020-010700",
         },
         {
            date: "2020-10-28T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202008-074",
         },
         {
            date: "2024-11-21T05:31:25.493000",
            db: "NVD",
            id: "CVE-2020-3621",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202008-074",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon  Buffer error vulnerability in the product",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010700",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "buffer error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202008-074",
         },
      ],
      trust: 0.6,
   },
}

var-202009-1325
Vulnerability from variot

u'Information disclosure issue can occur due to partial secure display-touch session tear-down' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Snapdragon The product contains a vulnerability related to information leakage.Information may be obtained

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-202009-1325",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "msm8909",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8953",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc8180x",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8917",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8998",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx24",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq6018",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "kamorta",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8250",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs610",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr2130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8940",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa515m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcm2150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx55",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm7150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8098",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa415m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm6150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429w",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8017",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa6155p",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qm215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "nicobar",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8076",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8905",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8920",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "rennell",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc7180",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8937",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8017",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8053",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8076",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8096au",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8098",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq6018",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "kamorta",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9150",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9205",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010703",
         },
         {
            db: "NVD",
            id: "CVE-2020-3643",
         },
      ],
   },
   cve: "CVE-2020-3643",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 2.1,
                  confidentialityImpact: "PARTIAL",
                  exploitabilityScore: 3.9,
                  id: "CVE-2020-3643",
                  impactScore: 2.9,
                  integrityImpact: "NONE",
                  severity: "LOW",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2020-3643",
                  impactScore: 3.6,
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Local",
                  author: "NVD",
                  availabilityImpact: "None",
                  baseScore: 5.5,
                  baseSeverity: "Medium",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2020-3643",
                  impactScore: null,
                  integrityImpact: "None",
                  privilegesRequired: "Low",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2020-3643",
                  trust: 1,
                  value: "MEDIUM",
               },
               {
                  author: "NVD",
                  id: "CVE-2020-3643",
                  trust: 0.8,
                  value: "Medium",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-202008-019",
                  trust: 0.6,
                  value: "HIGH",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010703",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-019",
         },
         {
            db: "NVD",
            id: "CVE-2020-3643",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "u'Information disclosure issue can occur due to partial secure display-touch session tear-down' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8076, APQ8096AU, APQ8098, IPQ6018, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Snapdragon The product contains a vulnerability related to information leakage.Information may be obtained",
      sources: [
         {
            db: "NVD",
            id: "CVE-2020-3643",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-010703",
         },
      ],
      trust: 1.62,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2020-3643",
            trust: 2.4,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-010703",
            trust: 0.8,
         },
         {
            db: "AUSCERT",
            id: "ESB-2020.2661",
            trust: 0.6,
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-019",
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010703",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-019",
         },
         {
            db: "NVD",
            id: "CVE-2020-3643",
         },
      ],
   },
   id: "VAR-202009-1325",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VARIoT devices database",
            id: null,
         },
      ],
      trust: 0.2491935133333333,
   },
   last_update_date: "2024-11-23T21:07:41.226000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "August 2020 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
         },
         {
            title: "Multiple Qualcomm Product information disclosure vulnerability repair measures",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=125356",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010703",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-019",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-200",
            trust: 1,
         },
         {
            problemtype: "CWE-404",
            trust: 1,
         },
         {
            problemtype: "information leak (CWE-200) [NVD Evaluation ]",
            trust: 0.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010703",
         },
         {
            db: "NVD",
            id: "CVE-2020-3643",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.6,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
         },
         {
            trust: 1,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
         },
         {
            trust: 0.8,
            url: "https://nvd.nist.gov/vuln/detail/cve-2020-3643",
         },
         {
            trust: 0.6,
            url: "https://source.android.com/security/bulletin/2020-08-01",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-pixel-multiple-vulnerabilities-of-august-2020-32996",
         },
         {
            trust: 0.6,
            url: "https://www.auscert.org.au/bulletins/esb-2020.2661/",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010703",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-019",
         },
         {
            db: "NVD",
            id: "CVE-2020-3643",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010703",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-019",
         },
         {
            db: "NVD",
            id: "CVE-2020-3643",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2021-02-01T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2020-010703",
         },
         {
            date: "2020-08-03T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202008-019",
         },
         {
            date: "2020-09-08T10:15:15.560000",
            db: "NVD",
            id: "CVE-2020-3643",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2021-02-01T08:35:00",
            db: "JVNDB",
            id: "JVNDB-2020-010703",
         },
         {
            date: "2020-08-05T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202008-019",
         },
         {
            date: "2024-11-21T05:31:28.267000",
            db: "NVD",
            id: "CVE-2020-3643",
         },
      ],
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon  Information leakage vulnerabilities in products",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010703",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "information disclosure",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202008-019",
         },
      ],
      trust: 0.6,
   },
}

var-201912-1757
Vulnerability from variot

Due to the use of non-time-constant comparison functions there is issue in timing side channels which can be used as a potential side channel for SUI corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Snapdragon The product contains an information disclosure vulnerability.Information may be obtained. Qualcomm MDM9206 and so on are the products of American Qualcomm. MDM9206 is a central processing unit (CPU) product. MDM9607 is a central processing unit (CPU) product. MDM9650 is a central processing unit (CPU) product.

An information disclosure vulnerability exists in Content Protection in multiple Qualcomm products. The vulnerability stems from configuration errors in the network system or product during operation. An unauthorized attacker could use the vulnerability to obtain sensitive information about the affected component

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201912-1757",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "msm8909",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8953",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc8180x",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8917",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8998",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx24",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8250",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr2130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8940",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx55",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm7150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8098",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm6150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8017",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa6155p",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qm215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "nicobar",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8905",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8920",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8937",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8017",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096au",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8098",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9150",
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9607",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8909",
         },
         {
            model: "msm 8996au",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "605",
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "660",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "439",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "630",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "660",
         },
         {
            model: "sdx",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "24",
         },
         {
            model: "qcs",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "405",
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9206",
         },
         {
            model: "sxr",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "1130",
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9205",
         },
         {
            model: "qcs",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "404",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8998",
         },
         {
            model: "nicobar",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa 6155p",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8180x",
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "845",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "636",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "670",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "710",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "845",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "850",
         },
         {
            model: "sm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "6150",
         },
         {
            model: "sm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "7150",
         },
         {
            model: "sm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8150",
         },
         {
            model: "sm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8250",
         },
         {
            model: "sxr",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "2130",
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8053",
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8009",
         },
         {
            model: "apq 8096au",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8098",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8905",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8917",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8920",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8937",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8940",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8953",
         },
         {
            model: "qm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "215",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "429",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "450",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "632",
         },
         {
            model: "sdx",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "55",
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8096",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8996",
         },
         {
            model: "apq apq8017",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "965",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16056",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-013400",
         },
         {
            db: "NVD",
            id: "CVE-2019-10482",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8009_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8017_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8053_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8096_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8096au_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8098_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9150_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9205_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9206_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9607_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-013400",
         },
      ],
   },
   cve: "CVE-2019-10482",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "MEDIUM",
                  accessVector: "NETWORK",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 7.1,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 8.6,
                  id: "CVE-2019-10482",
                  impactScore: 6.9,
                  integrityImpact: "NONE",
                  severity: "HIGH",
                  trust: 1.8,
                  vectorString: "AV:N/AC:M/Au:N/C:C/I:N/A:N",
                  version: "2.0",
               },
               {
                  accessComplexity: "MEDIUM",
                  accessVector: "NETWORK",
                  authentication: "NONE",
                  author: "CNVD",
                  availabilityImpact: "NONE",
                  baseScore: 7.1,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 8.6,
                  id: "CNVD-2020-16056",
                  impactScore: 6.9,
                  integrityImpact: "NONE",
                  severity: "HIGH",
                  trust: 0.6,
                  vectorString: "AV:N/AC:M/Au:N/C:C/I:N/A:N",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "HIGH",
                  attackVector: "NETWORK",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 5.9,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 2.2,
                  id: "CVE-2019-10482",
                  impactScore: 3.6,
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               {
                  attackComplexity: "High",
                  attackVector: "Network",
                  author: "NVD",
                  availabilityImpact: "None",
                  baseScore: 5.9,
                  baseSeverity: "Medium",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2019-10482",
                  impactScore: null,
                  integrityImpact: "None",
                  privilegesRequired: "None",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2019-10482",
                  trust: 1,
                  value: "MEDIUM",
               },
               {
                  author: "NVD",
                  id: "CVE-2019-10482",
                  trust: 0.8,
                  value: "Medium",
               },
               {
                  author: "CNVD",
                  id: "CNVD-2020-16056",
                  trust: 0.6,
                  value: "HIGH",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201912-106",
                  trust: 0.6,
                  value: "MEDIUM",
               },
            ],
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16056",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-013400",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201912-106",
         },
         {
            db: "NVD",
            id: "CVE-2019-10482",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "Due to the use of non-time-constant comparison functions there is issue in timing side channels which can be used as a potential side channel for SUI corruption in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SA6155P, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Snapdragon The product contains an information disclosure vulnerability.Information may be obtained. Qualcomm MDM9206 and so on are the products of American Qualcomm. MDM9206 is a central processing unit (CPU) product. MDM9607 is a central processing unit (CPU) product. MDM9650 is a central processing unit (CPU) product. \n\r\n\r\nAn information disclosure vulnerability exists in Content Protection in multiple Qualcomm products. The vulnerability stems from configuration errors in the network system or product during operation. An unauthorized attacker could use the vulnerability to obtain sensitive information about the affected component",
      sources: [
         {
            db: "NVD",
            id: "CVE-2019-10482",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-013400",
         },
         {
            db: "CNVD",
            id: "CNVD-2020-16056",
         },
      ],
      trust: 2.16,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2019-10482",
            trust: 3,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-013400",
            trust: 0.8,
         },
         {
            db: "CNVD",
            id: "CNVD-2020-16056",
            trust: 0.6,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201912-106",
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16056",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-013400",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201912-106",
         },
         {
            db: "NVD",
            id: "CVE-2019-10482",
         },
      ],
   },
   id: "VAR-201912-1757",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16056",
         },
      ],
      trust: 1.6,
   },
   iot_taxonomy: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            category: [
               "Network device",
            ],
            sub_category: null,
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16056",
         },
      ],
   },
   last_update_date: "2024-11-23T22:21:22.451000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "December 2019 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin",
         },
         {
            title: "Patch for Multiple Qualcomm Product Information Disclosure Vulnerabilities (CNVD-2020-16056)",
            trust: 0.6,
            url: "https://www.cnvd.org.cn/patchInfo/show/207819",
         },
         {
            title: "Multiple Qualcomm Product information disclosure vulnerability repair measures",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=105734",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16056",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-013400",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201912-106",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "NVD-CWE-noinfo",
            trust: 1,
         },
         {
            problemtype: "CWE-200",
            trust: 0.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-013400",
         },
         {
            db: "NVD",
            id: "CVE-2019-10482",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 2.2,
            url: "https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2019-10482",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-10482",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-pixel-multiple-vulnerabilities-of-december-2019-31041",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16056",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-013400",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201912-106",
         },
         {
            db: "NVD",
            id: "CVE-2019-10482",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "CNVD",
            id: "CNVD-2020-16056",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-013400",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201912-106",
         },
         {
            db: "NVD",
            id: "CVE-2019-10482",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-09T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-16056",
         },
         {
            date: "2019-12-27T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-013400",
         },
         {
            date: "2019-12-02T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201912-106",
         },
         {
            date: "2019-12-18T06:15:11.177000",
            db: "NVD",
            id: "CVE-2019-10482",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-09T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-16056",
         },
         {
            date: "2019-12-27T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-013400",
         },
         {
            date: "2020-08-25T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201912-106",
         },
         {
            date: "2024-11-21T04:19:14.607000",
            db: "NVD",
            id: "CVE-2019-10482",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "remote",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201912-106",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon Information disclosure vulnerability in products",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-013400",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "information disclosure",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201912-106",
         },
      ],
      trust: 0.6,
   },
}

var-201907-0558
Vulnerability from variot

While rendering the layout background, Error status check is not caught properly and also incorrect status handling is being done leading to unintended SUI behaviour in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX24, SXR1130. plural Snapdragon The product contains an input validation vulnerability.Information may be tampered with. Qualcomm MDM9206, etc. are all products of Qualcomm. MDM9206 is a central processing unit (CPU) product. MDM9607 is a central processing unit (CPU) product. SDX24 is a modem.

There are security vulnerabilities in Content Protection in many Qualcomm products. Attackers can use this vulnerability to perform unauthorized operations. Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. This may aid in further attacks. These issues are being tracked by Android Bug IDs A-129766496, A-129766125, A-122473271, A-122474808, A-122472479, A-122473168, A-122473304, A-122473496, A-122473989, A-129766432, A-129766099 and A-129766299. The following products and versions are affected: Qualcomm MDM9150; MDM9206; MDM9607; MDM9650; MDM9655; MSM8996AU; SD 670; SD 730; SD 820; SD 820A; SD 835; SD 845; SD 850; SD 855; SD 8CX;

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201907-0558",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 8cx",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 410",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx24",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 205",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 212",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 835",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 675",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820a",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 730",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9655",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 855",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 412",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 210",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 712",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9655",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 210",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 212",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605 no",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "425",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "427",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "430",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "435",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "450",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "625",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "636",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "712",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "710",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "670",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "845",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "850",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "855",
         },
         {
            model: "sdm630 no",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660 no",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8909w no",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405 no",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "675",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "730",
         },
         {
            model: "sdx24 no",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "pixel xl",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "pixel c",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "pixel",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "nexus player",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "9",
         },
         {
            model: "nexus 6p",
            scope: null,
            trust: 0.3,
            vendor: "google",
            version: null,
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "6",
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "5x",
         },
         {
            model: "android",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20157",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006896",
         },
         {
            db: "NVD",
            id: "CVE-2019-2241",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9150_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9206_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9607_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9650_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9655_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:msm8996au_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs404_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs605_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sd_210_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sd_212_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-006896",
         },
      ],
   },
   credits: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/credits#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "The vendor reported these issues.",
      sources: [
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-080",
         },
      ],
      trust: 0.9,
   },
   cve: "CVE-2019-2241",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 2.1,
                  confidentialityImpact: "NONE",
                  exploitabilityScore: 3.9,
                  id: "CVE-2019-2241",
                  impactScore: 2.9,
                  integrityImpact: "PARTIAL",
                  severity: "LOW",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:N/I:P/A:N",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "CNVD",
                  availabilityImpact: "NONE",
                  baseScore: 2.1,
                  confidentialityImpact: "NONE",
                  exploitabilityScore: 3.9,
                  id: "CNVD-2020-20157",
                  impactScore: 2.9,
                  integrityImpact: "PARTIAL",
                  severity: "LOW",
                  trust: 0.6,
                  vectorString: "AV:L/AC:L/Au:N/C:N/I:P/A:N",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "VULHUB",
                  availabilityImpact: "NONE",
                  baseScore: 2.1,
                  confidentialityImpact: "NONE",
                  exploitabilityScore: 3.9,
                  id: "VHN-153676",
                  impactScore: 2.9,
                  integrityImpact: "PARTIAL",
                  severity: "LOW",
                  trust: 0.1,
                  vectorString: "AV:L/AC:L/AU:N/C:N/I:P/A:N",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "NONE",
                  exploitabilityScore: 1.8,
                  id: "CVE-2019-2241",
                  impactScore: 3.6,
                  integrityImpact: "HIGH",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1.8,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2019-2241",
                  trust: 1,
                  value: "MEDIUM",
               },
               {
                  author: "NVD",
                  id: "CVE-2019-2241",
                  trust: 0.8,
                  value: "Medium",
               },
               {
                  author: "CNVD",
                  id: "CNVD-2020-20157",
                  trust: 0.6,
                  value: "LOW",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201907-080",
                  trust: 0.6,
                  value: "MEDIUM",
               },
               {
                  author: "VULHUB",
                  id: "VHN-153676",
                  trust: 0.1,
                  value: "LOW",
               },
            ],
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20157",
         },
         {
            db: "VULHUB",
            id: "VHN-153676",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006896",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-080",
         },
         {
            db: "NVD",
            id: "CVE-2019-2241",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "While rendering the layout background, Error status check is not caught properly and also incorrect status handling is being done leading to unintended SUI behaviour in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 210/SD 212/SD 205, SD 410/12, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX24, SXR1130. plural Snapdragon The product contains an input validation vulnerability.Information may be tampered with. Qualcomm MDM9206, etc. are all products of Qualcomm. MDM9206 is a central processing unit (CPU) product. MDM9607 is a central processing unit (CPU) product. SDX24 is a modem. \n\r\n\r\nThere are security vulnerabilities in Content Protection in many Qualcomm products. Attackers can use this vulnerability to perform unauthorized operations. Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. This may aid in further attacks. \nThese issues are being tracked by Android Bug IDs A-129766496, A-129766125, A-122473271, A-122474808, A-122472479, A-122473168, A-122473304, A-122473496, A-122473989, A-129766432, A-129766099 and A-129766299. The following products and versions are affected: Qualcomm MDM9150; MDM9206; MDM9607; MDM9650; MDM9655; MSM8996AU; SD 670; SD 730; SD 820; SD 820A; SD 835; SD 845; SD 850; SD 855; SD 8CX;",
      sources: [
         {
            db: "NVD",
            id: "CVE-2019-2241",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006896",
         },
         {
            db: "CNVD",
            id: "CNVD-2020-20157",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "VULHUB",
            id: "VHN-153676",
         },
      ],
      trust: 2.52,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2019-2241",
            trust: 3.4,
         },
         {
            db: "BID",
            id: "108986",
            trust: 1.5,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006896",
            trust: 0.8,
         },
         {
            db: "CNVD",
            id: "CNVD-2020-20157",
            trust: 0.7,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-080",
            trust: 0.7,
         },
         {
            db: "VULHUB",
            id: "VHN-153676",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20157",
         },
         {
            db: "VULHUB",
            id: "VHN-153676",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006896",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-080",
         },
         {
            db: "NVD",
            id: "CVE-2019-2241",
         },
      ],
   },
   id: "VAR-201907-0558",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20157",
         },
         {
            db: "VULHUB",
            id: "VHN-153676",
         },
      ],
      trust: 1.7,
   },
   iot_taxonomy: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            category: [
               "Network device",
            ],
            sub_category: null,
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20157",
         },
      ],
   },
   last_update_date: "2024-11-23T21:37:05.779000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "July 2019 Qualcomm Technologies, Inc. Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            title: "Patch for Multiple Qualcomm product input verification error vulnerabilities (CNVD-2020-20157)",
            trust: 0.6,
            url: "https://www.cnvd.org.cn/patchInfo/show/211557",
         },
         {
            title: "Multiple Qualcomm Product security vulnerabilities",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=94314",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20157",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006896",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-080",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-755",
            trust: 1,
         },
         {
            problemtype: "CWE-20",
            trust: 0.9,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153676",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006896",
         },
         {
            db: "NVD",
            id: "CVE-2019-2241",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.7,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2019-2241",
         },
         {
            trust: 1.2,
            url: "http://www.securityfocus.com/bid/108986",
         },
         {
            trust: 0.9,
            url: "http://code.google.com/android/",
         },
         {
            trust: 0.9,
            url: "http://www.qualcomm.com/",
         },
         {
            trust: 0.9,
            url: "https://source.android.com/security/bulletin/2019-07-01.html",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-2241",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-july-2019-29673",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20157",
         },
         {
            db: "VULHUB",
            id: "VHN-153676",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006896",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-080",
         },
         {
            db: "NVD",
            id: "CVE-2019-2241",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "CNVD",
            id: "CNVD-2020-20157",
         },
         {
            db: "VULHUB",
            id: "VHN-153676",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006896",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-080",
         },
         {
            db: "NVD",
            id: "CVE-2019-2241",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-30T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-20157",
         },
         {
            date: "2019-07-25T00:00:00",
            db: "VULHUB",
            id: "VHN-153676",
         },
         {
            date: "2019-07-01T00:00:00",
            db: "BID",
            id: "108986",
         },
         {
            date: "2019-07-30T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-006896",
         },
         {
            date: "2019-07-02T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201907-080",
         },
         {
            date: "2019-07-25T17:15:12.347000",
            db: "NVD",
            id: "CVE-2019-2241",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-30T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-20157",
         },
         {
            date: "2019-07-26T00:00:00",
            db: "VULHUB",
            id: "VHN-153676",
         },
         {
            date: "2019-07-01T00:00:00",
            db: "BID",
            id: "108986",
         },
         {
            date: "2019-07-30T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-006896",
         },
         {
            date: "2019-07-29T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201907-080",
         },
         {
            date: "2024-11-21T04:40:30.830000",
            db: "NVD",
            id: "CVE-2019-2241",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201907-080",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon Vulnerability related to input validation in products",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-006896",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "input validation error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201907-080",
         },
      ],
      trust: 0.6,
   },
}

var-202009-1322
Vulnerability from variot

u'Lack of check of integer overflow while doing a round up operation for data read from shared memory for G-link SMEM transport can lead to corruption and potential information leak' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Snapdragon The product is vulnerable to integer overflow.Information may be obtained

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-202009-1322",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "msm8909",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8953",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc8180x",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8917",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8998",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx24",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "kamorta",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8250",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs610",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr2130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9645",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9640",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9655",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca8081",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8940",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcm2150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx55",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "saipan",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm7150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8098",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm6150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa415m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429w",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "bitra",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa6155p",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qm215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcn7605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "nicobar",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8905",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8920",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx20",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "rennell",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc7180",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8937",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8053",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8096au",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8098",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "bitra",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "kamorta",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9150",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9206",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9640",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010699",
         },
         {
            db: "NVD",
            id: "CVE-2020-3620",
         },
      ],
   },
   cve: "CVE-2020-3620",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 2.1,
                  confidentialityImpact: "PARTIAL",
                  exploitabilityScore: 3.9,
                  id: "CVE-2020-3620",
                  impactScore: 2.9,
                  integrityImpact: "NONE",
                  severity: "LOW",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2020-3620",
                  impactScore: 3.6,
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Local",
                  author: "NVD",
                  availabilityImpact: "None",
                  baseScore: 5.5,
                  baseSeverity: "Medium",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2020-3620",
                  impactScore: null,
                  integrityImpact: "None",
                  privilegesRequired: "Low",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2020-3620",
                  trust: 1,
                  value: "MEDIUM",
               },
               {
                  author: "NVD",
                  id: "CVE-2020-3620",
                  trust: 0.8,
                  value: "Medium",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010699",
         },
         {
            db: "NVD",
            id: "CVE-2020-3620",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "u'Lack of check of integer overflow while doing a round up operation for data read from shared memory for G-link SMEM transport can lead to corruption and potential information leak' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, Bitra, IPQ6018, IPQ8074, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, MSM8998, Nicobar, QCA8081, QCM2150, QCN7605, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SA415M, SA6155P, Saipan, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Snapdragon The product is vulnerable to integer overflow.Information may be obtained",
      sources: [
         {
            db: "NVD",
            id: "CVE-2020-3620",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-010699",
         },
      ],
      trust: 1.62,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2020-3620",
            trust: 2.4,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-010699",
            trust: 0.8,
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-032",
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010699",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-032",
         },
         {
            db: "NVD",
            id: "CVE-2020-3620",
         },
      ],
   },
   id: "VAR-202009-1322",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VARIoT devices database",
            id: null,
         },
      ],
      trust: 0.2491935133333333,
   },
   last_update_date: "2024-11-23T21:35:18.663000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "August 2020 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
         },
         {
            title: "Multiple Qualcomm Product input verification error vulnerability fixes",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=125369",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010699",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-032",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-190",
            trust: 1,
         },
         {
            problemtype: "Integer overflow or wraparound (CWE-190) [NVD Evaluation ]",
            trust: 0.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010699",
         },
         {
            db: "NVD",
            id: "CVE-2020-3620",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.6,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
         },
         {
            trust: 1,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
         },
         {
            trust: 0.8,
            url: "https://nvd.nist.gov/vuln/detail/cve-2020-3620",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010699",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-032",
         },
         {
            db: "NVD",
            id: "CVE-2020-3620",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010699",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-032",
         },
         {
            db: "NVD",
            id: "CVE-2020-3620",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2021-02-01T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2020-010699",
         },
         {
            date: "2020-08-03T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202008-032",
         },
         {
            date: "2020-09-08T10:15:15.043000",
            db: "NVD",
            id: "CVE-2020-3620",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2021-02-01T08:35:00",
            db: "JVNDB",
            id: "JVNDB-2020-010699",
         },
         {
            date: "2020-08-04T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202008-032",
         },
         {
            date: "2024-11-21T05:31:25.327000",
            db: "NVD",
            id: "CVE-2020-3620",
         },
      ],
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon  Integer overflow vulnerability in product",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010699",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "input validation error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202008-032",
         },
      ],
      trust: 0.6,
   },
}

var-201907-1050
Vulnerability from variot

Lack of check to prevent the buffer length taking negative values can lead to stack overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9150, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA6174A, QCA8081, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130. plural Snapdragon The product contains a buffer error vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. An attacker can exploit these issues to perform unauthorized actions. This may aid in further attacks. These issues are being tracked by Android Bug IDs A-120486477, A-120485121, A-120487163, A-122473494, and A-123998003. Qualcomm MDM9206 and others are products of Qualcomm (Qualcomm). MDM9206 is a central processing unit (CPU) product. MDM9607 is a central processing unit (CPU) product. MDM9640 is a central processing unit (CPU) product. A buffer error vulnerability exists in several Qualcomm products. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. Attackers can exploit this vulnerability to cause buffer overflow or heap overflow, etc

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201907-1050",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 427",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 425",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 675",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9615",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820a",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 730",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 615",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9640",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9655",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 616",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca8081",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 435",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 665",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 712",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 625",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9625",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 8cx",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 415",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 205",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 212",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 835",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 652",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "snapdragon high med 2016",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6174a",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8909w",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx20",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9635m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 855",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 430",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 210",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9615",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9625",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9635m",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9640",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9655",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "pixel xl",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "pixel c",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "pixel",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "nexus player",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "9",
         },
         {
            model: "nexus 6p",
            scope: null,
            trust: 0.3,
            vendor: "google",
            version: null,
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "6",
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "5x",
         },
         {
            model: "android",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
      ],
      sources: [
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015878",
         },
         {
            db: "NVD",
            id: "CVE-2018-13924",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:ipq8074_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9150_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9206_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9607_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9615_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9625_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9635m_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9640_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9650_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9655_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2018-015878",
         },
      ],
   },
   credits: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/credits#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "The vendor reported these issues.",
      sources: [
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-075",
         },
      ],
      trust: 0.9,
   },
   cve: "CVE-2018-13924",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "NETWORK",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "COMPLETE",
                  baseScore: 10,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 10,
                  id: "CVE-2018-13924",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 1.9,
                  vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "NETWORK",
                  authentication: "NONE",
                  author: "VULHUB",
                  availabilityImpact: "COMPLETE",
                  baseScore: 10,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 10,
                  id: "VHN-124032",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 0.1,
                  vectorString: "AV:N/AC:L/AU:N/C:C/I:C/A:C",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 3.9,
                  id: "CVE-2018-13924",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  trust: 1.8,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2018-13924",
                  trust: 1,
                  value: "CRITICAL",
               },
               {
                  author: "NVD",
                  id: "CVE-2018-13924",
                  trust: 0.8,
                  value: "Critical",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201906-075",
                  trust: 0.6,
                  value: "CRITICAL",
               },
               {
                  author: "VULHUB",
                  id: "VHN-124032",
                  trust: 0.1,
                  value: "HIGH",
               },
               {
                  author: "VULMON",
                  id: "CVE-2018-13924",
                  trust: 0.1,
                  value: "HIGH",
               },
            ],
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-124032",
         },
         {
            db: "VULMON",
            id: "CVE-2018-13924",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015878",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-075",
         },
         {
            db: "NVD",
            id: "CVE-2018-13924",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "Lack of check to prevent the buffer length taking negative values can lead to stack overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9150, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA6174A, QCA8081, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130. plural Snapdragon The product contains a buffer error vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. \nAn attacker can exploit these issues to perform unauthorized actions. This may aid in further attacks. \nThese issues are being tracked by Android Bug IDs A-120486477, A-120485121, A-120487163, A-122473494, and A-123998003. Qualcomm MDM9206 and others are products of Qualcomm (Qualcomm). MDM9206 is a central processing unit (CPU) product. MDM9607 is a central processing unit (CPU) product. MDM9640 is a central processing unit (CPU) product. A buffer error vulnerability exists in several Qualcomm products. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. Attackers can exploit this vulnerability to cause buffer overflow or heap overflow, etc",
      sources: [
         {
            db: "NVD",
            id: "CVE-2018-13924",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015878",
         },
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "VULHUB",
            id: "VHN-124032",
         },
         {
            db: "VULMON",
            id: "CVE-2018-13924",
         },
      ],
      trust: 2.07,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2018-13924",
            trust: 2.9,
         },
         {
            db: "BID",
            id: "108546",
            trust: 1,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015878",
            trust: 0.8,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-075",
            trust: 0.7,
         },
         {
            db: "VULHUB",
            id: "VHN-124032",
            trust: 0.1,
         },
         {
            db: "VULMON",
            id: "CVE-2018-13924",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-124032",
         },
         {
            db: "VULMON",
            id: "CVE-2018-13924",
         },
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015878",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-075",
         },
         {
            db: "NVD",
            id: "CVE-2018-13924",
         },
      ],
   },
   id: "VAR-201907-1050",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VULHUB",
            id: "VHN-124032",
         },
      ],
      trust: 0.01,
   },
   last_update_date: "2024-11-23T21:52:06.842000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "June 2019 Qualcomm Technologies, Inc. Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            title: "Multiple Qualcomm Product Buffer Error Vulnerability Fix",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=93164",
         },
         {
            title: "The Register",
            trust: 0.1,
            url: "https://www.theregister.co.uk/2019/06/05/android_june_patch/",
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2018-13924",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015878",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-075",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-787",
            trust: 1.1,
         },
         {
            problemtype: "CWE-119",
            trust: 0.9,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-124032",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015878",
         },
         {
            db: "NVD",
            id: "CVE-2018-13924",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2018-13924",
         },
         {
            trust: 0.9,
            url: "http://code.google.com/android/",
         },
         {
            trust: 0.9,
            url: "http://www.qualcomm.com/",
         },
         {
            trust: 0.9,
            url: "https://source.android.com/security/bulletin/2019-06-01.html",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-13924",
         },
         {
            trust: 0.7,
            url: "https://www.securityfocus.com/bid/108546",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-june-2019-29461",
         },
         {
            trust: 0.1,
            url: "https://cwe.mitre.org/data/definitions/787.html",
         },
         {
            trust: 0.1,
            url: "https://nvd.nist.gov",
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-124032",
         },
         {
            db: "VULMON",
            id: "CVE-2018-13924",
         },
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015878",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-075",
         },
         {
            db: "NVD",
            id: "CVE-2018-13924",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "VULHUB",
            id: "VHN-124032",
         },
         {
            db: "VULMON",
            id: "CVE-2018-13924",
         },
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015878",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-075",
         },
         {
            db: "NVD",
            id: "CVE-2018-13924",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2019-07-22T00:00:00",
            db: "VULHUB",
            id: "VHN-124032",
         },
         {
            date: "2019-07-22T00:00:00",
            db: "VULMON",
            id: "CVE-2018-13924",
         },
         {
            date: "2019-06-03T00:00:00",
            db: "BID",
            id: "108546",
         },
         {
            date: "2019-07-25T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2018-015878",
         },
         {
            date: "2019-06-03T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201906-075",
         },
         {
            date: "2019-07-22T14:15:11.223000",
            db: "NVD",
            id: "CVE-2018-13924",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-08-24T00:00:00",
            db: "VULHUB",
            id: "VHN-124032",
         },
         {
            date: "2020-08-24T00:00:00",
            db: "VULMON",
            id: "CVE-2018-13924",
         },
         {
            date: "2019-06-03T00:00:00",
            db: "BID",
            id: "108546",
         },
         {
            date: "2019-07-25T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2018-015878",
         },
         {
            date: "2020-08-25T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201906-075",
         },
         {
            date: "2024-11-21T03:48:20.723000",
            db: "NVD",
            id: "CVE-2018-13924",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "remote",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201906-075",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon Product buffer error vulnerability",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2018-015878",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "buffer error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201906-075",
         },
      ],
      trust: 0.6,
   },
}

var-201907-0557
Vulnerability from variot

While sending the rendered surface content to the screen, Error handling is not properly checked results in an unpredictable behaviour in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9880, QCA9886, QCA9980, QCN5502, QCS404, QCS605, SD 210/SD 212/SD 205, SD 425, SD 600, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130. plural Snapdragon The product contains an error handling vulnerability.Information may be tampered with. Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. An attacker can exploit these issues to perform unauthorized actions. This may aid in further attacks. These issues are being tracked by Android Bug IDs A-129766496, A-129766125, A-122473271, A-122474808, A-122472479, A-122473168, A-122473304, A-122473496, A-122473989, A-129766432, A-129766099 and A-129766299

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201907-0557",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "qca9379",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6584au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx24",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 425",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 675",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820a",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca9377",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 730",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq4019",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9640",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca8081",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6564",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcn5502",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 712",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca9531",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca9980",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 625",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 8cx",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 205",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 212",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca9880",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 835",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8064",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca9886",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6574au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6174a",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 600",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx20",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6584",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 855",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6574",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 210",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq4019",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8064",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9640",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6174a",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "pixel xl",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "pixel c",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "pixel",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "nexus player",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "9",
         },
         {
            model: "nexus 6p",
            scope: null,
            trust: 0.3,
            vendor: "google",
            version: null,
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "6",
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "5x",
         },
         {
            model: "android",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
      ],
      sources: [
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006895",
         },
         {
            db: "NVD",
            id: "CVE-2019-2240",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:ipq4019_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:ipq8064_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:ipq8074_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9150_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9206_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9607_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9640_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9650_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:msm8996au_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qca6174a_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-006895",
         },
      ],
   },
   credits: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/credits#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "The vendor reported these issues.",
      sources: [
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-081",
         },
      ],
      trust: 0.9,
   },
   cve: "CVE-2019-2240",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 2.1,
                  confidentialityImpact: "NONE",
                  exploitabilityScore: 3.9,
                  id: "CVE-2019-2240",
                  impactScore: 2.9,
                  integrityImpact: "PARTIAL",
                  severity: "LOW",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:N/I:P/A:N",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "VULHUB",
                  availabilityImpact: "NONE",
                  baseScore: 2.1,
                  confidentialityImpact: "NONE",
                  exploitabilityScore: 3.9,
                  id: "VHN-153675",
                  impactScore: 2.9,
                  integrityImpact: "PARTIAL",
                  severity: "LOW",
                  trust: 0.1,
                  vectorString: "AV:L/AC:L/AU:N/C:N/I:P/A:N",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "NONE",
                  exploitabilityScore: 1.8,
                  id: "CVE-2019-2240",
                  impactScore: 3.6,
                  integrityImpact: "HIGH",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1.8,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2019-2240",
                  trust: 1,
                  value: "MEDIUM",
               },
               {
                  author: "NVD",
                  id: "CVE-2019-2240",
                  trust: 0.8,
                  value: "Medium",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201907-081",
                  trust: 0.6,
                  value: "MEDIUM",
               },
               {
                  author: "VULHUB",
                  id: "VHN-153675",
                  trust: 0.1,
                  value: "LOW",
               },
            ],
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153675",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006895",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-081",
         },
         {
            db: "NVD",
            id: "CVE-2019-2240",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "While sending the rendered surface content to the screen, Error handling is not properly checked results in an unpredictable behaviour in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9880, QCA9886, QCA9980, QCN5502, QCS404, QCS605, SD 210/SD 212/SD 205, SD 425, SD 600, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130. plural Snapdragon The product contains an error handling vulnerability.Information may be tampered with. Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. \nAn attacker can exploit these issues to perform unauthorized actions. This may aid in further attacks. \nThese issues are being tracked by Android Bug IDs A-129766496, A-129766125, A-122473271, A-122474808, A-122472479, A-122473168, A-122473304, A-122473496, A-122473989, A-129766432, A-129766099 and A-129766299",
      sources: [
         {
            db: "NVD",
            id: "CVE-2019-2240",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006895",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "VULHUB",
            id: "VHN-153675",
         },
      ],
      trust: 1.98,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2019-2240",
            trust: 2.8,
         },
         {
            db: "BID",
            id: "108986",
            trust: 0.9,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006895",
            trust: 0.8,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-081",
            trust: 0.6,
         },
         {
            db: "VULHUB",
            id: "VHN-153675",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153675",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006895",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-081",
         },
         {
            db: "NVD",
            id: "CVE-2019-2240",
         },
      ],
   },
   id: "VAR-201907-0557",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153675",
         },
      ],
      trust: 0.01,
   },
   last_update_date: "2024-11-23T21:37:05.484000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "July 2019 Qualcomm Technologies, Inc. Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            title: "Multiple Qualcomm Product security vulnerabilities",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=94315",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-006895",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-081",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-755",
            trust: 1,
         },
         {
            problemtype: "CWE-388",
            trust: 0.9,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153675",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006895",
         },
         {
            db: "NVD",
            id: "CVE-2019-2240",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.7,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2019-2240",
         },
         {
            trust: 0.9,
            url: "http://code.google.com/android/",
         },
         {
            trust: 0.9,
            url: "http://www.qualcomm.com/",
         },
         {
            trust: 0.9,
            url: "https://source.android.com/security/bulletin/2019-07-01.html",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-2240",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-july-2019-29673",
         },
         {
            trust: 0.6,
            url: "https://www.securityfocus.com/bid/108986",
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153675",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006895",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-081",
         },
         {
            db: "NVD",
            id: "CVE-2019-2240",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "VULHUB",
            id: "VHN-153675",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006895",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-081",
         },
         {
            db: "NVD",
            id: "CVE-2019-2240",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2019-07-25T00:00:00",
            db: "VULHUB",
            id: "VHN-153675",
         },
         {
            date: "2019-07-01T00:00:00",
            db: "BID",
            id: "108986",
         },
         {
            date: "2019-07-30T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-006895",
         },
         {
            date: "2019-07-02T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201907-081",
         },
         {
            date: "2019-07-25T17:15:12.270000",
            db: "NVD",
            id: "CVE-2019-2240",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2019-07-26T00:00:00",
            db: "VULHUB",
            id: "VHN-153675",
         },
         {
            date: "2019-07-01T00:00:00",
            db: "BID",
            id: "108986",
         },
         {
            date: "2019-07-30T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-006895",
         },
         {
            date: "2019-07-29T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201907-081",
         },
         {
            date: "2024-11-21T04:40:30.647000",
            db: "NVD",
            id: "CVE-2019-2240",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201907-081",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon Product error handling vulnerability",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-006895",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "code problem",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201907-081",
         },
      ],
      trust: 0.6,
   },
}

var-201907-0243
Vulnerability from variot

Firmware is getting into loop of overwriting memory when scan command is given from host because of improper validation. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, QCA8081, QCS404, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660. plural Snapdragon The product contains a vulnerability related to array index validation.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm SD 712 is a central processing unit (CPU) product of Qualcomm.

There are vulnerabilities in input verification errors in WLANs in many Qualcomm products. The vulnerability stems from the fact that the network system or product did not correctly verify the input data. There is currently no detailed vulnerability details provided. Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. An attacker can exploit these issues to perform unauthorized actions. This may aid in further attacks. These issues are being tracked by Android Bug IDs A-129766496, A-129766125, A-122473271, A-122474808, A-122472479, A-122473168, A-122473304, A-122473496, A-122473989, A-129766432, A-129766099 and A-129766299

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201907-0243",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "sd 8cx",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 427",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 835",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 425",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca8081",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 435",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 855",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 430",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 712",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 625",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca8081",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 425",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 427",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 430",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 435",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 450",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404 no",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605 no",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "425",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "427",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "430",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "435",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "450",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "625",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "636",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "712",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "710",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "670",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "820",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "835",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "845",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "850",
         },
         {
            model: "sd no",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "855",
         },
         {
            model: "sd 8cx no",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660 no",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630 no",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660 no",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074 no",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca8081 no",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405 no",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "pixel xl",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "pixel c",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "pixel",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "nexus player",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "9",
         },
         {
            model: "nexus 6p",
            scope: null,
            trust: 0.3,
            vendor: "google",
            version: null,
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "6",
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "5x",
         },
         {
            model: "android",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20156",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-007035",
         },
         {
            db: "NVD",
            id: "CVE-2019-2346",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:ipq8074_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qca8081_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs404_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs405_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs605_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sd_425_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sd_427_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sd_430_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sd_435_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sd_450_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-007035",
         },
      ],
   },
   credits: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/credits#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "The vendor reported these issues.",
      sources: [
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-066",
         },
      ],
      trust: 0.9,
   },
   cve: "CVE-2019-2346",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "COMPLETE",
                  baseScore: 7.2,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 3.9,
                  id: "CVE-2019-2346",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 1.9,
                  vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "CNVD",
                  availabilityImpact: "COMPLETE",
                  baseScore: 7.2,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 3.9,
                  id: "CNVD-2020-20156",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 0.6,
                  vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "VULHUB",
                  availabilityImpact: "COMPLETE",
                  baseScore: 7.2,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 3.9,
                  id: "VHN-153781",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 0.1,
                  vectorString: "AV:L/AC:L/AU:N/C:C/I:C/A:C",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2019-2346",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1.8,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2019-2346",
                  trust: 1,
                  value: "HIGH",
               },
               {
                  author: "NVD",
                  id: "CVE-2019-2346",
                  trust: 0.8,
                  value: "High",
               },
               {
                  author: "CNVD",
                  id: "CNVD-2020-20156",
                  trust: 0.6,
                  value: "HIGH",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201907-066",
                  trust: 0.6,
                  value: "HIGH",
               },
               {
                  author: "VULHUB",
                  id: "VHN-153781",
                  trust: 0.1,
                  value: "HIGH",
               },
               {
                  author: "VULMON",
                  id: "CVE-2019-2346",
                  trust: 0.1,
                  value: "HIGH",
               },
            ],
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20156",
         },
         {
            db: "VULHUB",
            id: "VHN-153781",
         },
         {
            db: "VULMON",
            id: "CVE-2019-2346",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-007035",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-066",
         },
         {
            db: "NVD",
            id: "CVE-2019-2346",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "Firmware is getting into loop of overwriting memory when scan command is given from host because of improper validation. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, QCA8081, QCS404, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660. plural Snapdragon The product contains a vulnerability related to array index validation.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm SD 712 is a central processing unit (CPU) product of Qualcomm. \n\r\n\r\nThere are vulnerabilities in input verification errors in WLANs in many Qualcomm products. The vulnerability stems from the fact that the network system or product did not correctly verify the input data. There is currently no detailed vulnerability details provided. Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. \nAn attacker can exploit these issues to perform unauthorized actions. This may aid in further attacks. \nThese issues are being tracked by Android Bug IDs A-129766496, A-129766125, A-122473271, A-122474808, A-122472479, A-122473168, A-122473304, A-122473496, A-122473989, A-129766432, A-129766099 and A-129766299",
      sources: [
         {
            db: "NVD",
            id: "CVE-2019-2346",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-007035",
         },
         {
            db: "CNVD",
            id: "CNVD-2020-20156",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "VULHUB",
            id: "VHN-153781",
         },
         {
            db: "VULMON",
            id: "CVE-2019-2346",
         },
      ],
      trust: 2.61,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2019-2346",
            trust: 3.5,
         },
         {
            db: "BID",
            id: "108986",
            trust: 1.6,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-007035",
            trust: 0.8,
         },
         {
            db: "CNVD",
            id: "CNVD-2020-20156",
            trust: 0.7,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-066",
            trust: 0.7,
         },
         {
            db: "VULHUB",
            id: "VHN-153781",
            trust: 0.1,
         },
         {
            db: "VULMON",
            id: "CVE-2019-2346",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20156",
         },
         {
            db: "VULHUB",
            id: "VHN-153781",
         },
         {
            db: "VULMON",
            id: "CVE-2019-2346",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-007035",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-066",
         },
         {
            db: "NVD",
            id: "CVE-2019-2346",
         },
      ],
   },
   id: "VAR-201907-0243",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20156",
         },
         {
            db: "VULHUB",
            id: "VHN-153781",
         },
      ],
      trust: 1.7,
   },
   iot_taxonomy: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            category: [
               "Network device",
            ],
            sub_category: null,
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20156",
         },
      ],
   },
   last_update_date: "2024-11-23T21:37:05.708000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "July 2019 Qualcomm Technologies, Inc. Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            title: "Patch for Multiple Qualcomm product input verification error vulnerabilities (CNVD-2020-20156)",
            trust: 0.6,
            url: "https://www.cnvd.org.cn/patchInfo/show/211553",
         },
         {
            title: "Multiple Qualcomm Product security vulnerabilities",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=94300",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20156",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-007035",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-066",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-129",
            trust: 1.9,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153781",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-007035",
         },
         {
            db: "NVD",
            id: "CVE-2019-2346",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2019-2346",
         },
         {
            trust: 1.3,
            url: "http://www.securityfocus.com/bid/108986",
         },
         {
            trust: 0.9,
            url: "http://code.google.com/android/",
         },
         {
            trust: 0.9,
            url: "http://www.qualcomm.com/",
         },
         {
            trust: 0.9,
            url: "https://source.android.com/security/bulletin/2019-07-01.html",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-2346",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-july-2019-29673",
         },
         {
            trust: 0.1,
            url: "https://cwe.mitre.org/data/definitions/129.html",
         },
         {
            trust: 0.1,
            url: "https://nvd.nist.gov",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-20156",
         },
         {
            db: "VULHUB",
            id: "VHN-153781",
         },
         {
            db: "VULMON",
            id: "CVE-2019-2346",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-007035",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-066",
         },
         {
            db: "NVD",
            id: "CVE-2019-2346",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "CNVD",
            id: "CNVD-2020-20156",
         },
         {
            db: "VULHUB",
            id: "VHN-153781",
         },
         {
            db: "VULMON",
            id: "CVE-2019-2346",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-007035",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-066",
         },
         {
            db: "NVD",
            id: "CVE-2019-2346",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-30T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-20156",
         },
         {
            date: "2019-07-25T00:00:00",
            db: "VULHUB",
            id: "VHN-153781",
         },
         {
            date: "2019-07-25T00:00:00",
            db: "VULMON",
            id: "CVE-2019-2346",
         },
         {
            date: "2019-07-01T00:00:00",
            db: "BID",
            id: "108986",
         },
         {
            date: "2019-07-31T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-007035",
         },
         {
            date: "2019-07-02T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201907-066",
         },
         {
            date: "2019-07-25T17:15:14.237000",
            db: "NVD",
            id: "CVE-2019-2346",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-30T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-20156",
         },
         {
            date: "2019-07-30T00:00:00",
            db: "VULHUB",
            id: "VHN-153781",
         },
         {
            date: "2019-07-30T00:00:00",
            db: "VULMON",
            id: "CVE-2019-2346",
         },
         {
            date: "2019-07-01T00:00:00",
            db: "BID",
            id: "108986",
         },
         {
            date: "2019-07-31T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-007035",
         },
         {
            date: "2019-07-31T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201907-066",
         },
         {
            date: "2024-11-21T04:40:45.683000",
            db: "NVD",
            id: "CVE-2019-2346",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201907-066",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon Vulnerability related to array index verification in products",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-007035",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "input validation error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201907-066",
         },
      ],
      trust: 0.6,
   },
}

var-201907-1049
Vulnerability from variot

Debug policy with invalid signature can be loaded when the debug policy functionality is disabled by using the parallel image loading in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 410/12, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130. plural Snapdragon The product contains authentication vulnerabilities.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. An attacker can exploit these issues to perform unauthorized actions. This may aid in further attacks. These issues are being tracked by Android Bug IDs A-120486477, A-120485121, A-120487163, A-122473494, and A-123998003

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201907-1049",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 8cx",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 410",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 835",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820a",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9655",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 855",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 412",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 712",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9655",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 410",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 412",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 636",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "pixel xl",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "pixel c",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "pixel",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "nexus player",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "9",
         },
         {
            model: "nexus 6p",
            scope: null,
            trust: 0.3,
            vendor: "google",
            version: null,
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "6",
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "5x",
         },
         {
            model: "android",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
      ],
      sources: [
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015877",
         },
         {
            db: "NVD",
            id: "CVE-2018-13927",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9206_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9607_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9650_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9655_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:msm8996au_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs404_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs605_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sd_410_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sd_412_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sd_636_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2018-015877",
         },
      ],
   },
   credits: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/credits#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "The vendor reported these issues.",
      sources: [
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-079",
         },
      ],
      trust: 0.9,
   },
   cve: "CVE-2018-13927",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "COMPLETE",
                  baseScore: 7.2,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 3.9,
                  id: "CVE-2018-13927",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 1.9,
                  vectorString: "AV:L/AC:L/Au:N/C:C/I:C/A:C",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "VULHUB",
                  availabilityImpact: "COMPLETE",
                  baseScore: 7.2,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 3.9,
                  id: "VHN-124035",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 0.1,
                  vectorString: "AV:L/AC:L/AU:N/C:C/I:C/A:C",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 7.8,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2018-13927",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1.8,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2018-13927",
                  trust: 1,
                  value: "HIGH",
               },
               {
                  author: "NVD",
                  id: "CVE-2018-13927",
                  trust: 0.8,
                  value: "High",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201906-079",
                  trust: 0.6,
                  value: "HIGH",
               },
               {
                  author: "VULHUB",
                  id: "VHN-124035",
                  trust: 0.1,
                  value: "HIGH",
               },
               {
                  author: "VULMON",
                  id: "CVE-2018-13927",
                  trust: 0.1,
                  value: "HIGH",
               },
            ],
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-124035",
         },
         {
            db: "VULMON",
            id: "CVE-2018-13927",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015877",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-079",
         },
         {
            db: "NVD",
            id: "CVE-2018-13927",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "Debug policy with invalid signature can be loaded when the debug policy functionality is disabled by using the parallel image loading in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 410/12, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130. plural Snapdragon The product contains authentication vulnerabilities.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. \nAn attacker can exploit these issues to perform unauthorized actions. This may aid in further attacks. \nThese issues are being tracked by Android Bug IDs A-120486477, A-120485121, A-120487163, A-122473494, and A-123998003",
      sources: [
         {
            db: "NVD",
            id: "CVE-2018-13927",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015877",
         },
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "VULHUB",
            id: "VHN-124035",
         },
         {
            db: "VULMON",
            id: "CVE-2018-13927",
         },
      ],
      trust: 2.07,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2018-13927",
            trust: 2.9,
         },
         {
            db: "BID",
            id: "108546",
            trust: 1,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015877",
            trust: 0.8,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-079",
            trust: 0.6,
         },
         {
            db: "VULHUB",
            id: "VHN-124035",
            trust: 0.1,
         },
         {
            db: "VULMON",
            id: "CVE-2018-13927",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-124035",
         },
         {
            db: "VULMON",
            id: "CVE-2018-13927",
         },
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015877",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-079",
         },
         {
            db: "NVD",
            id: "CVE-2018-13927",
         },
      ],
   },
   id: "VAR-201907-1049",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VULHUB",
            id: "VHN-124035",
         },
      ],
      trust: 0.01,
   },
   last_update_date: "2024-11-23T21:52:06.701000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "June 2019 Qualcomm Technologies, Inc. Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            title: "Multiple Qualcomm Product Authorization Issue Vulnerability Fixing Measures",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=93168",
         },
         {
            title: "The Register",
            trust: 0.1,
            url: "https://www.theregister.co.uk/2019/06/05/android_june_patch/",
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2018-13927",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015877",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-079",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-287",
            trust: 1.9,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-124035",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015877",
         },
         {
            db: "NVD",
            id: "CVE-2018-13927",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2018-13927",
         },
         {
            trust: 0.9,
            url: "http://code.google.com/android/",
         },
         {
            trust: 0.9,
            url: "http://www.qualcomm.com/",
         },
         {
            trust: 0.9,
            url: "https://source.android.com/security/bulletin/2019-06-01.html",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-13927",
         },
         {
            trust: 0.7,
            url: "https://www.securityfocus.com/bid/108546",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-june-2019-29461",
         },
         {
            trust: 0.1,
            url: "https://cwe.mitre.org/data/definitions/287.html",
         },
         {
            trust: 0.1,
            url: "https://nvd.nist.gov",
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-124035",
         },
         {
            db: "VULMON",
            id: "CVE-2018-13927",
         },
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015877",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-079",
         },
         {
            db: "NVD",
            id: "CVE-2018-13927",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "VULHUB",
            id: "VHN-124035",
         },
         {
            db: "VULMON",
            id: "CVE-2018-13927",
         },
         {
            db: "BID",
            id: "108546",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2018-015877",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201906-079",
         },
         {
            db: "NVD",
            id: "CVE-2018-13927",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2019-07-22T00:00:00",
            db: "VULHUB",
            id: "VHN-124035",
         },
         {
            date: "2019-07-22T00:00:00",
            db: "VULMON",
            id: "CVE-2018-13927",
         },
         {
            date: "2019-06-03T00:00:00",
            db: "BID",
            id: "108546",
         },
         {
            date: "2019-07-25T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2018-015877",
         },
         {
            date: "2019-06-03T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201906-079",
         },
         {
            date: "2019-07-22T14:15:11.300000",
            db: "NVD",
            id: "CVE-2018-13927",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2019-07-24T00:00:00",
            db: "VULHUB",
            id: "VHN-124035",
         },
         {
            date: "2019-07-24T00:00:00",
            db: "VULMON",
            id: "CVE-2018-13927",
         },
         {
            date: "2019-06-03T00:00:00",
            db: "BID",
            id: "108546",
         },
         {
            date: "2019-07-25T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2018-015877",
         },
         {
            date: "2019-07-25T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201906-079",
         },
         {
            date: "2024-11-21T03:48:21.090000",
            db: "NVD",
            id: "CVE-2018-13927",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201906-079",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon Authentication vulnerabilities in products",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2018-015877",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "authorization issue",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201906-079",
         },
      ],
      trust: 0.6,
   },
}

var-201911-1431
Vulnerability from variot

Information disclosure due to lack of address range check done on the SysDBG buffers in SDI code. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, MDM9205, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, Snapdragon_High_Med_2016, SXR1130. plural Snapdragon The product contains a buffer error vulnerability.Information may be obtained. Qualcomm SDA660 and so on are a kind of central processing unit (CPU) products of Qualcomm of the United States. An attacker could use this vulnerability to leak information

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201911-1431",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "apq8009",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "snapdragon high med 2016",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm850",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: "eq",
            trust: 1.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8017",
            scope: "eq",
            trust: 1.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8909",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8953",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8917",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8998",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qm215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "nicobar",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8905",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8920",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8940",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8937",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8017",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8905",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8909",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8917",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8920",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8937",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8940",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8909",
         },
         {
            model: "qcs",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "605",
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "660",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "439",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "630",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "660",
         },
         {
            model: "qcs",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "405",
         },
         {
            model: "snapdragon high med",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "2016",
         },
         {
            model: "sxr",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "1130",
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9205",
         },
         {
            model: "qcs",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "404",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8998",
         },
         {
            model: "nicobar",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "845",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "636",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "670",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "710",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "845",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "850",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8905",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8917",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8920",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8937",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8940",
         },
         {
            model: "msm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8953",
         },
         {
            model: "qm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "215",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "429",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "450",
         },
         {
            model: "sdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "632",
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8009",
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8017",
         },
         {
            model: "apq",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8053",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16065",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012276",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-324",
         },
         {
            db: "NVD",
            id: "CVE-2019-2295",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8009_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8017_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:apq8053_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9205_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:msm8905_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:msm8909_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:msm8917_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:msm8920_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:msm8937_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:msm8940_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-012276",
         },
      ],
   },
   cve: "CVE-2019-2295",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 2.1,
                  confidentialityImpact: "PARTIAL",
                  exploitabilityScore: 3.9,
                  id: "CVE-2019-2295",
                  impactScore: 2.9,
                  integrityImpact: "NONE",
                  severity: "LOW",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "CNVD",
                  availabilityImpact: "NONE",
                  baseScore: 2.1,
                  confidentialityImpact: "PARTIAL",
                  exploitabilityScore: 3.9,
                  id: "CNVD-2020-16065",
                  impactScore: 2.9,
                  integrityImpact: "NONE",
                  severity: "LOW",
                  trust: 0.6,
                  vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2019-2295",
                  impactScore: 3.6,
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Local",
                  author: "NVD",
                  availabilityImpact: "None",
                  baseScore: 5.5,
                  baseSeverity: "Medium",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2019-2295",
                  impactScore: null,
                  integrityImpact: "None",
                  privilegesRequired: "Low",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2019-2295",
                  trust: 1,
                  value: "MEDIUM",
               },
               {
                  author: "NVD",
                  id: "CVE-2019-2295",
                  trust: 0.8,
                  value: "Medium",
               },
               {
                  author: "CNVD",
                  id: "CNVD-2020-16065",
                  trust: 0.6,
                  value: "LOW",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201910-324",
                  trust: 0.6,
                  value: "MEDIUM",
               },
            ],
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16065",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012276",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-324",
         },
         {
            db: "NVD",
            id: "CVE-2019-2295",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "Information disclosure due to lack of address range check done on the SysDBG buffers in SDI code. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8017, APQ8053, MDM9205, MSM8905, MSM8909, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8998, Nicobar, QCS404, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, Snapdragon_High_Med_2016, SXR1130. plural Snapdragon The product contains a buffer error vulnerability.Information may be obtained. Qualcomm SDA660 and so on are a kind of central processing unit (CPU) products of Qualcomm of the United States. An attacker could use this vulnerability to leak information",
      sources: [
         {
            db: "NVD",
            id: "CVE-2019-2295",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012276",
         },
         {
            db: "CNVD",
            id: "CNVD-2020-16065",
         },
      ],
      trust: 2.16,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2019-2295",
            trust: 3,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012276",
            trust: 0.8,
         },
         {
            db: "CNVD",
            id: "CNVD-2020-16065",
            trust: 0.6,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-324",
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16065",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012276",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-324",
         },
         {
            db: "NVD",
            id: "CVE-2019-2295",
         },
      ],
   },
   id: "VAR-201911-1431",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16065",
         },
      ],
      trust: 1.6,
   },
   iot_taxonomy: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            category: [
               "Network device",
            ],
            sub_category: null,
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16065",
         },
      ],
   },
   last_update_date: "2024-11-23T21:51:50.131000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "October 2019 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
         },
         {
            title: "Patch for Multiple Qualcomm Product Information Disclosure Vulnerabilities (CNVD-2020-16065)",
            trust: 0.6,
            url: "https://www.cnvd.org.cn/patchInfo/show/207825",
         },
         {
            title: "Multiple Qualcomm Product security vulnerabilities",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=99028",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16065",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012276",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-324",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-119",
            trust: 1.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-012276",
         },
         {
            db: "NVD",
            id: "CVE-2019-2295",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 2.2,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2019-2295",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-2295",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-pixel-multiple-vulnerabilities-of-october-2019-30549",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16065",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012276",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-324",
         },
         {
            db: "NVD",
            id: "CVE-2019-2295",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "CNVD",
            id: "CNVD-2020-16065",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012276",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-324",
         },
         {
            db: "NVD",
            id: "CVE-2019-2295",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-09T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-16065",
         },
         {
            date: "2019-11-28T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-012276",
         },
         {
            date: "2019-10-08T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201910-324",
         },
         {
            date: "2019-11-21T15:15:15.463000",
            db: "NVD",
            id: "CVE-2019-2295",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-09T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-16065",
         },
         {
            date: "2019-11-28T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-012276",
         },
         {
            date: "2019-11-26T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201910-324",
         },
         {
            date: "2024-11-21T04:40:38.483000",
            db: "NVD",
            id: "CVE-2019-2295",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201910-324",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon Product buffer error vulnerability",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-012276",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "buffer error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201910-324",
         },
      ],
      trust: 0.6,
   },
}

var-202009-1326
Vulnerability from variot

u'Information disclosure issue occurs as in current logic Secure Touch session is released without terminating display session' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Snapdragon The product contains a vulnerability related to information leakage.Information may be obtained

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-202009-1326",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "msm8909",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc8180x",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8998",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx24",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "kamorta",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8250",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs610",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr2130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa515m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx55",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8096au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm7150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8098",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa415m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm6150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa6155p",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "nicobar",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8905",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "rennell",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc7180",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8009",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8096au",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8098",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "kamorta",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9150",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9205",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9206",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9650",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "msm8905",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010704",
         },
         {
            db: "NVD",
            id: "CVE-2020-3644",
         },
      ],
   },
   cve: "CVE-2020-3644",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 2.1,
                  confidentialityImpact: "PARTIAL",
                  exploitabilityScore: 3.9,
                  id: "CVE-2020-3644",
                  impactScore: 2.9,
                  integrityImpact: "NONE",
                  severity: "LOW",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "NONE",
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1.8,
                  id: "CVE-2020-3644",
                  impactScore: 3.6,
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Local",
                  author: "NVD",
                  availabilityImpact: "None",
                  baseScore: 5.5,
                  baseSeverity: "Medium",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2020-3644",
                  impactScore: null,
                  integrityImpact: "None",
                  privilegesRequired: "Low",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2020-3644",
                  trust: 1,
                  value: "MEDIUM",
               },
               {
                  author: "NVD",
                  id: "CVE-2020-3644",
                  trust: 0.8,
                  value: "Medium",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-202008-018",
                  trust: 0.6,
                  value: "HIGH",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010704",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-018",
         },
         {
            db: "NVD",
            id: "CVE-2020-3644",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "u'Information disclosure issue occurs as in current logic Secure Touch session is released without terminating display session' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8096AU, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8996, MSM8996AU, MSM8998, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA415M, SA515M, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130. plural Snapdragon The product contains a vulnerability related to information leakage.Information may be obtained",
      sources: [
         {
            db: "NVD",
            id: "CVE-2020-3644",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-010704",
         },
      ],
      trust: 1.62,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2020-3644",
            trust: 2.4,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-010704",
            trust: 0.8,
         },
         {
            db: "AUSCERT",
            id: "ESB-2020.2661",
            trust: 0.6,
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-018",
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010704",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-018",
         },
         {
            db: "NVD",
            id: "CVE-2020-3644",
         },
      ],
   },
   id: "VAR-202009-1326",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VARIoT devices database",
            id: null,
         },
      ],
      trust: 0.4266432,
   },
   last_update_date: "2024-11-23T20:36:23.213000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "August 2020 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
         },
         {
            title: "Multiple Qualcomm Product information disclosure vulnerability repair measures",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=125355",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010704",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-018",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-200",
            trust: 1,
         },
         {
            problemtype: "CWE-404",
            trust: 1,
         },
         {
            problemtype: "information leak (CWE-200) [NVD Evaluation ]",
            trust: 0.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010704",
         },
         {
            db: "NVD",
            id: "CVE-2020-3644",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.6,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin",
         },
         {
            trust: 1,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin",
         },
         {
            trust: 0.8,
            url: "https://nvd.nist.gov/vuln/detail/cve-2020-3644",
         },
         {
            trust: 0.6,
            url: "https://source.android.com/security/bulletin/2020-08-01",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-pixel-multiple-vulnerabilities-of-august-2020-32996",
         },
         {
            trust: 0.6,
            url: "https://www.auscert.org.au/bulletins/esb-2020.2661/",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010704",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-018",
         },
         {
            db: "NVD",
            id: "CVE-2020-3644",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010704",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202008-018",
         },
         {
            db: "NVD",
            id: "CVE-2020-3644",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2021-02-01T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2020-010704",
         },
         {
            date: "2020-08-03T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202008-018",
         },
         {
            date: "2020-09-08T10:15:15.653000",
            db: "NVD",
            id: "CVE-2020-3644",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2021-02-01T08:35:00",
            db: "JVNDB",
            id: "JVNDB-2020-010704",
         },
         {
            date: "2020-08-05T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202008-018",
         },
         {
            date: "2024-11-21T05:31:28.410000",
            db: "NVD",
            id: "CVE-2020-3644",
         },
      ],
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon  Information leakage vulnerabilities in products",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-010704",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "information disclosure",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202008-018",
         },
      ],
      trust: 0.6,
   },
}

var-201909-1453
Vulnerability from variot

Possible buffer overflow issue due to lack of length check when parsing the extended cap IE header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA8081, QCA9379, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, SXR1130. plural Snapdragon The product contains a classic buffer overflow vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm WLAN chip is a dedicated chip for Qualcomm platform to handle WLAN/WIFI protocol. It belongs to Qualcomm Baseband subsystem, which is used to improve WLAN/WIFI processing speed and performance and reduce energy consumption. A remote code execution vulnerability exists in the Qualcomm WLAN chip. An attacker can control the WLAN firmware and eventually cause arbitrary code to be executed on the server. Qualcomm MDM9206 and others are products of Qualcomm (Qualcomm). MDM9206 is a central processing unit (CPU) product. MDM9607 is a central processing unit (CPU) product. MDM9640 is a central processing unit (CPU) product. A buffer error vulnerability exists in several Qualcomm products. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. Attackers can exploit this vulnerability to cause buffer overflow or heap overflow, etc. The following products and versions are affected: Qualcomm MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA8081, QCA9379, QCS404, QCS405, QCS605; Qualcomm 215, SD 2120/SD 2120/SD , SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX; Qualcomm SDA660, SDM439, SDM630, SDM660; Qualcomm SDX20, SDX24, SXR1130

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201909-1453",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "qca6584",
            scope: null,
            trust: 1.4,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 1.4,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: null,
            trust: 1.4,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: null,
            trust: 1.4,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9640",
            scope: null,
            trust: 1.4,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: null,
            trust: 1.4,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6174a",
            scope: null,
            trust: 1.4,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6574au",
            scope: null,
            trust: 1.4,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd",
            scope: "eq",
            trust: 1.2,
            vendor: "qualcomm",
            version: "427",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 1.2,
            vendor: "qualcomm",
            version: "435",
         },
         {
            model: "qca9379",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx24",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 427",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 425",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 675",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820a",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 730",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9640",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca8081",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 435",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 665",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 712",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 625",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 8cx",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 205",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 212",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 835",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6574au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6174a",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx20",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6584",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 855",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 430",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6574",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 210",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6574",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "212",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "205",
         },
         {
            model: "sdx20",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "425",
         },
         {
            model: "sd 820a",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "845",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "835",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "210",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "850",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "430",
         },
         {
            model: "sdx24",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca8081",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "632",
         },
         {
            model: "sd 8cx",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "439",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "636",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "710",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "855",
         },
         {
            model: "qcs605",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qualcomm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "215",
         },
         {
            model: "qca9379",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "820",
         },
         {
            model: "sda660",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: null,
            trust: 0.6,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "450",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "675",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "712",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "730",
         },
         {
            model: "sd",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "665",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2019-28290",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-010018",
         },
         {
            db: "NVD",
            id: "CVE-2019-10539",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:ipq8074_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9206_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9607_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9640_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9650_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:msm8996au_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qca6174a_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qca6574_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qca6574au_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qca6584_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-010018",
         },
      ],
   },
   cve: "CVE-2019-10539",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "NETWORK",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "COMPLETE",
                  baseScore: 10,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 10,
                  id: "CVE-2019-10539",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 1.8,
                  vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "NETWORK",
                  authentication: "NONE",
                  author: "CNVD",
                  availabilityImpact: "COMPLETE",
                  baseScore: 10,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 10,
                  id: "CNVD-2019-28290",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 0.6,
                  vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "NETWORK",
                  authentication: "NONE",
                  author: "VULHUB",
                  availabilityImpact: "COMPLETE",
                  baseScore: 10,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 10,
                  id: "VHN-142095",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 0.1,
                  vectorString: "AV:N/AC:L/AU:N/C:C/I:C/A:C",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 3.9,
                  id: "CVE-2019-10539",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Network",
                  author: "NVD",
                  availabilityImpact: "High",
                  baseScore: 9.8,
                  baseSeverity: "Critical",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2019-10539",
                  impactScore: null,
                  integrityImpact: "High",
                  privilegesRequired: "None",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2019-10539",
                  trust: 1,
                  value: "CRITICAL",
               },
               {
                  author: "NVD",
                  id: "CVE-2019-10539",
                  trust: 0.8,
                  value: "Critical",
               },
               {
                  author: "CNVD",
                  id: "CNVD-2019-28290",
                  trust: 0.6,
                  value: "HIGH",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201908-433",
                  trust: 0.6,
                  value: "CRITICAL",
               },
               {
                  author: "VULHUB",
                  id: "VHN-142095",
                  trust: 0.1,
                  value: "HIGH",
               },
            ],
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2019-28290",
         },
         {
            db: "VULHUB",
            id: "VHN-142095",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-010018",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201908-433",
         },
         {
            db: "NVD",
            id: "CVE-2019-10539",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "Possible buffer overflow issue due to lack of length check when parsing the extended cap IE header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA8081, QCA9379, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, SXR1130. plural Snapdragon The product contains a classic buffer overflow vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm WLAN chip is a dedicated chip for Qualcomm platform to handle WLAN/WIFI protocol. It belongs to Qualcomm Baseband subsystem, which is used to improve WLAN/WIFI processing speed and performance and reduce energy consumption. A remote code execution vulnerability exists in the Qualcomm WLAN chip. An attacker can control the WLAN firmware and eventually cause arbitrary code to be executed on the server. Qualcomm MDM9206 and others are products of Qualcomm (Qualcomm). MDM9206 is a central processing unit (CPU) product. MDM9607 is a central processing unit (CPU) product. MDM9640 is a central processing unit (CPU) product. A buffer error vulnerability exists in several Qualcomm products. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. Attackers can exploit this vulnerability to cause buffer overflow or heap overflow, etc. The following products and versions are affected: Qualcomm MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA8081, QCA9379, QCS404, QCS405, QCS605; Qualcomm 215, SD 2120/SD 2120/SD , SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX; Qualcomm SDA660, SDM439, SDM630, SDM660; Qualcomm SDX20, SDX24, SXR1130",
      sources: [
         {
            db: "NVD",
            id: "CVE-2019-10539",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-010018",
         },
         {
            db: "CNVD",
            id: "CNVD-2019-28290",
         },
         {
            db: "VULHUB",
            id: "VHN-142095",
         },
      ],
      trust: 2.25,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2019-10539",
            trust: 3.1,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-010018",
            trust: 0.8,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201908-433",
            trust: 0.7,
         },
         {
            db: "CNVD",
            id: "CNVD-2019-28290",
            trust: 0.6,
         },
         {
            db: "VULHUB",
            id: "VHN-142095",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2019-28290",
         },
         {
            db: "VULHUB",
            id: "VHN-142095",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-010018",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201908-433",
         },
         {
            db: "NVD",
            id: "CVE-2019-10539",
         },
      ],
   },
   id: "VAR-201909-1453",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2019-28290",
         },
         {
            db: "VULHUB",
            id: "VHN-142095",
         },
      ],
      trust: 1.6564394,
   },
   iot_taxonomy: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            category: [
               "Network device",
            ],
            sub_category: null,
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2019-28290",
         },
      ],
   },
   last_update_date: "2024-11-23T22:44:49.724000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "August 2019 Qualcomm Technologies, Inc. Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2019-bulletin",
         },
         {
            title: "Qualcomm WLAN chip remote code execution vulnerability patch",
            trust: 0.6,
            url: "https://www.cnvd.org.cn/patchInfo/show/176425",
         },
         {
            title: "Multiple Qualcomm Product Buffer Error Vulnerability Fix",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=96173",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2019-28290",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-010018",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201908-433",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-120",
            trust: 1.9,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-142095",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-010018",
         },
         {
            db: "NVD",
            id: "CVE-2019-10539",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 2.3,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2019-10539",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-10539",
         },
         {
            trust: 0.6,
            url: "https://source.android.com/security/bulletin/2019-08-01.html",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-august-2019-29951",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2019-28290",
         },
         {
            db: "VULHUB",
            id: "VHN-142095",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-010018",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201908-433",
         },
         {
            db: "NVD",
            id: "CVE-2019-10539",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "CNVD",
            id: "CNVD-2019-28290",
         },
         {
            db: "VULHUB",
            id: "VHN-142095",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-010018",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201908-433",
         },
         {
            db: "NVD",
            id: "CVE-2019-10539",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2019-08-22T00:00:00",
            db: "CNVD",
            id: "CNVD-2019-28290",
         },
         {
            date: "2019-09-30T00:00:00",
            db: "VULHUB",
            id: "VHN-142095",
         },
         {
            date: "2019-10-03T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-010018",
         },
         {
            date: "2019-08-06T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201908-433",
         },
         {
            date: "2019-09-30T16:15:11.040000",
            db: "NVD",
            id: "CVE-2019-10539",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2019-08-22T00:00:00",
            db: "CNVD",
            id: "CNVD-2019-28290",
         },
         {
            date: "2019-10-02T00:00:00",
            db: "VULHUB",
            id: "VHN-142095",
         },
         {
            date: "2019-10-03T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-010018",
         },
         {
            date: "2019-10-14T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201908-433",
         },
         {
            date: "2024-11-21T04:19:23.623000",
            db: "NVD",
            id: "CVE-2019-10539",
         },
      ],
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon Classic buffer overflow vulnerability in products",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-010018",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "buffer error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201908-433",
         },
      ],
      trust: 0.6,
   },
}

var-201909-1456
Vulnerability from variot

Buffer overflow in WLAN NAN function due to lack of check of count value received in NAN availability attribute in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, MSM8996AU, QCA6174A, QCA6574AU, QCA8081, QCA9377, QCA9379, QCS404, QCS405, QCS605, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130. plural Snapdragon The product contains a classic buffer overflow vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm MSM8996AU is a central processing unit (CPU) product of Qualcomm (Qualcomm). A buffer error vulnerability exists in several Qualcomm products. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. Attackers can exploit this vulnerability to cause buffer overflow or heap overflow, etc. The following products and versions are affected: Qualcomm IPQ8074 ; Qualcomm MSM8996AU ; Qualcomm QCA6174A ; Qualcomm QCA6574AU ; Qualcomm QCA8081 ; Qualcomm QCA9377 ; Qualcomm QCA9379 ; Qualcomm QCS404 ; Qualcomm QCS405 ; Qualcomm QCS605 ; Qualcomm SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201909-1456",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "qca9379",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 8cx",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 835",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 675",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca9377",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 730",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6574au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6174a",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca8081",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 855",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 665",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 712",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6174a",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6574au",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca8081",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca9377",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca9379",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-010099",
         },
         {
            db: "NVD",
            id: "CVE-2019-10540",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:ipq8074_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:msm8996au_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qca6174a_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qca6574au_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qca8081_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qca9377_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qca9379_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs404_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs405_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs605_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-010099",
         },
      ],
   },
   cve: "CVE-2019-10540",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "NETWORK",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "COMPLETE",
                  baseScore: 10,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 10,
                  id: "CVE-2019-10540",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 1.8,
                  vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "NETWORK",
                  authentication: "NONE",
                  author: "VULHUB",
                  availabilityImpact: "COMPLETE",
                  baseScore: 10,
                  confidentialityImpact: "COMPLETE",
                  exploitabilityScore: 10,
                  id: "VHN-142097",
                  impactScore: 10,
                  integrityImpact: "COMPLETE",
                  severity: "HIGH",
                  trust: 0.1,
                  vectorString: "AV:N/AC:L/AU:N/C:C/I:C/A:C",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 3.9,
                  id: "CVE-2019-10540",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Network",
                  author: "NVD",
                  availabilityImpact: "High",
                  baseScore: 9.8,
                  baseSeverity: "Critical",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2019-10540",
                  impactScore: null,
                  integrityImpact: "High",
                  privilegesRequired: "None",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2019-10540",
                  trust: 1,
                  value: "CRITICAL",
               },
               {
                  author: "NVD",
                  id: "CVE-2019-10540",
                  trust: 0.8,
                  value: "Critical",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201908-434",
                  trust: 0.6,
                  value: "CRITICAL",
               },
               {
                  author: "VULHUB",
                  id: "VHN-142097",
                  trust: 0.1,
                  value: "HIGH",
               },
            ],
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-142097",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-010099",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201908-434",
         },
         {
            db: "NVD",
            id: "CVE-2019-10540",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "Buffer overflow in WLAN NAN function due to lack of check of count value received in NAN availability attribute in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, MSM8996AU, QCA6174A, QCA6574AU, QCA8081, QCA9377, QCA9379, QCS404, QCS405, QCS605, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130. plural Snapdragon The product contains a classic buffer overflow vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm MSM8996AU is a central processing unit (CPU) product of Qualcomm (Qualcomm). A buffer error vulnerability exists in several Qualcomm products. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. Attackers can exploit this vulnerability to cause buffer overflow or heap overflow, etc. The following products and versions are affected: Qualcomm IPQ8074 ; Qualcomm MSM8996AU ; Qualcomm QCA6174A ; Qualcomm QCA6574AU ; Qualcomm QCA8081 ; Qualcomm QCA9377 ; Qualcomm QCA9379 ; Qualcomm QCS404 ; Qualcomm QCS405 ; Qualcomm QCS605 ; Qualcomm SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130",
      sources: [
         {
            db: "NVD",
            id: "CVE-2019-10540",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-010099",
         },
         {
            db: "VULHUB",
            id: "VHN-142097",
         },
      ],
      trust: 1.71,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2019-10540",
            trust: 2.5,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-010099",
            trust: 0.8,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201908-434",
            trust: 0.7,
         },
         {
            db: "VULHUB",
            id: "VHN-142097",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-142097",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-010099",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201908-434",
         },
         {
            db: "NVD",
            id: "CVE-2019-10540",
         },
      ],
   },
   id: "VAR-201909-1456",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VULHUB",
            id: "VHN-142097",
         },
      ],
      trust: 0.01,
   },
   last_update_date: "2024-11-23T21:59:40.781000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "August 2019 Qualcomm Technologies, Inc. Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/august-2019-bulletin",
         },
         {
            title: "Multiple Qualcomm Product Buffer Error Vulnerability Fix",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=96174",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-010099",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201908-434",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-120",
            trust: 1.9,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-142097",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-010099",
         },
         {
            db: "NVD",
            id: "CVE-2019-10540",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.7,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2019-10540",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-10540",
         },
         {
            trust: 0.6,
            url: "https://source.android.com/security/bulletin/2019-08-01.html",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-august-2019-29951",
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-142097",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-010099",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201908-434",
         },
         {
            db: "NVD",
            id: "CVE-2019-10540",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "VULHUB",
            id: "VHN-142097",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-010099",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201908-434",
         },
         {
            db: "NVD",
            id: "CVE-2019-10540",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2019-09-30T00:00:00",
            db: "VULHUB",
            id: "VHN-142097",
         },
         {
            date: "2019-10-04T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-010099",
         },
         {
            date: "2019-08-06T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201908-434",
         },
         {
            date: "2019-09-30T16:15:11.103000",
            db: "NVD",
            id: "CVE-2019-10540",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2019-10-03T00:00:00",
            db: "VULHUB",
            id: "VHN-142097",
         },
         {
            date: "2019-10-04T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-010099",
         },
         {
            date: "2019-10-14T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201908-434",
         },
         {
            date: "2024-11-21T04:19:24.490000",
            db: "NVD",
            id: "CVE-2019-10540",
         },
      ],
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon Classic buffer overflow vulnerability in products",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-010099",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "buffer error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201908-434",
         },
      ],
      trust: 0.6,
   },
}

var-201911-1182
Vulnerability from variot

Subsequent use of the CBO listener may result in further memory corruption due to use after free issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, SDX55, SM6150, SM7150, SM8150, SXR2130. plural Snapdragon The product contains a vulnerability related to the use of released memory.Service operation interruption (DoS) There is a possibility of being put into a state. Qualcomm MDM9205 and other products are Qualcomm's products. MDM9205 is a central processing unit (CPU) product.

QCS404 is a central processing unit (CPU) product. SDX55 is a modem. QTEE in multiple Qualcomm products has a resource management error vulnerability. The vulnerability stems from improper management of system resources (such as memory, disk space, files, etc.) by network systems or products. An attacker could exploit this vulnerability to cause further memory corruption

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201911-1182",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "sxr2130",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm7150",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx55",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm6150",
            scope: "eq",
            trust: 2.2,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9205",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx55",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm 6150",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm 7150",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm 8150",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "srx 2130",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "9205",
         },
         {
            model: "qcs",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "404",
         },
         {
            model: "sm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "6150",
         },
         {
            model: "sm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "7150",
         },
         {
            model: "sm",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "8150",
         },
         {
            model: "sxr",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "2130",
         },
         {
            model: "sdx",
            scope: "eq",
            trust: 0.6,
            vendor: "qualcomm",
            version: "55",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16066",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012272",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-312",
         },
         {
            db: "NVD",
            id: "CVE-2019-2336",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9205_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs404_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sdx55_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sm6150_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sm7150_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sm8150_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:sxr2130_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-012272",
         },
      ],
   },
   cve: "CVE-2019-2336",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "COMPLETE",
                  baseScore: 4.9,
                  confidentialityImpact: "NONE",
                  exploitabilityScore: 3.9,
                  id: "CVE-2019-2336",
                  impactScore: 6.9,
                  integrityImpact: "NONE",
                  severity: "MEDIUM",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:N/I:N/A:C",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "CNVD",
                  availabilityImpact: "COMPLETE",
                  baseScore: 4.9,
                  confidentialityImpact: "NONE",
                  exploitabilityScore: 3.9,
                  id: "CNVD-2020-16066",
                  impactScore: 6.9,
                  integrityImpact: "NONE",
                  severity: "MEDIUM",
                  trust: 0.6,
                  vectorString: "AV:L/AC:L/Au:N/C:N/I:N/A:C",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "NONE",
                  exploitabilityScore: 1.8,
                  id: "CVE-2019-2336",
                  impactScore: 3.6,
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Local",
                  author: "NVD",
                  availabilityImpact: "High",
                  baseScore: 5.5,
                  baseSeverity: "Medium",
                  confidentialityImpact: "None",
                  exploitabilityScore: null,
                  id: "CVE-2019-2336",
                  impactScore: null,
                  integrityImpact: "None",
                  privilegesRequired: "Low",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2019-2336",
                  trust: 1,
                  value: "MEDIUM",
               },
               {
                  author: "NVD",
                  id: "CVE-2019-2336",
                  trust: 0.8,
                  value: "Medium",
               },
               {
                  author: "CNVD",
                  id: "CNVD-2020-16066",
                  trust: 0.6,
                  value: "MEDIUM",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201910-312",
                  trust: 0.6,
                  value: "MEDIUM",
               },
            ],
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16066",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012272",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-312",
         },
         {
            db: "NVD",
            id: "CVE-2019-2336",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "Subsequent use of the CBO listener may result in further memory corruption due to use after free issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, SDX55, SM6150, SM7150, SM8150, SXR2130. plural Snapdragon The product contains a vulnerability related to the use of released memory.Service operation interruption (DoS) There is a possibility of being put into a state. Qualcomm MDM9205 and other products are Qualcomm's products. MDM9205 is a central processing unit (CPU) product. \n\r\n\r\nQCS404 is a central processing unit (CPU) product. SDX55 is a modem. QTEE in multiple Qualcomm products has a resource management error vulnerability. The vulnerability stems from improper management of system resources (such as memory, disk space, files, etc.) by network systems or products. An attacker could exploit this vulnerability to cause further memory corruption",
      sources: [
         {
            db: "NVD",
            id: "CVE-2019-2336",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012272",
         },
         {
            db: "CNVD",
            id: "CNVD-2020-16066",
         },
      ],
      trust: 2.16,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2019-2336",
            trust: 3,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012272",
            trust: 0.8,
         },
         {
            db: "CNVD",
            id: "CNVD-2020-16066",
            trust: 0.6,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-312",
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16066",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012272",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-312",
         },
         {
            db: "NVD",
            id: "CVE-2019-2336",
         },
      ],
   },
   id: "VAR-201911-1182",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16066",
         },
      ],
      trust: 1.6,
   },
   iot_taxonomy: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            category: [
               "Network device",
            ],
            sub_category: null,
            trust: 0.6,
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16066",
         },
      ],
   },
   last_update_date: "2024-11-23T22:41:17.745000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "October 2019 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
         },
         {
            title: "Patch for Multiple Qualcomm Product Resource Management Error Vulnerabilities (CNVD-2020-16066)",
            trust: 0.6,
            url: "https://www.cnvd.org.cn/patchInfo/show/207833",
         },
         {
            title: "Multiple Qualcomm Product security vulnerabilities",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=99016",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16066",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012272",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-312",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-416",
            trust: 1.8,
         },
         {
            problemtype: "CWE-787",
            trust: 1,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-012272",
         },
         {
            db: "NVD",
            id: "CVE-2019-2336",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 2.2,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2019-2336",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-2336",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-pixel-multiple-vulnerabilities-of-october-2019-30549",
         },
      ],
      sources: [
         {
            db: "CNVD",
            id: "CNVD-2020-16066",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012272",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-312",
         },
         {
            db: "NVD",
            id: "CVE-2019-2336",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "CNVD",
            id: "CNVD-2020-16066",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-012272",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201910-312",
         },
         {
            db: "NVD",
            id: "CVE-2019-2336",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-09T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-16066",
         },
         {
            date: "2019-11-28T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-012272",
         },
         {
            date: "2019-10-08T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201910-312",
         },
         {
            date: "2019-11-21T15:15:16.463000",
            db: "NVD",
            id: "CVE-2019-2336",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-03-09T00:00:00",
            db: "CNVD",
            id: "CNVD-2020-16066",
         },
         {
            date: "2019-11-28T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-012272",
         },
         {
            date: "2019-11-26T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201910-312",
         },
         {
            date: "2024-11-21T04:40:44.577000",
            db: "NVD",
            id: "CVE-2019-2336",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201910-312",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon Vulnerability in using freed memory in products",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-012272",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "resource management error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201910-312",
         },
      ],
      trust: 0.6,
   },
}

var-202011-0215
Vulnerability from variot

u'Two threads running simultaneously from user space can lead to race condition in fastRPC driver' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8053, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8953, Nicobar, QCA6390, QCS404, QCS405, QCS610, Rennell, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA845, SDM429, SDM429W, SDM632, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130. plural Qualcomm The product contains a vulnerability related to the use of freed memory.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. The Qualcomm chip is a chip of Qualcomm (Qualcomm). A way to miniaturize circuits (mainly including semiconductor equipment, but also passive components, etc.) and often manufactured on the surface of semiconductor wafers. Many Qualcomm products have a resource management error vulnerability. The vulnerability originates from the fact that two threads running at the same time may cause race conditions in the fastRPC driver

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-202011-0215",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "msm8953",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx55",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc8180x",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "saipan",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm7150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq6018",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm6150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "kamorta",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa8155p",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "agatti",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8250",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429w",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6390",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8064",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs610",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr2130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "bitra",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq4019",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa6155p",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq8074",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "nicobar",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ipq5018",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "rennell",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sa515m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "bitra",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "agatti",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq5018",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8053",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq6018",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq4019",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq8064",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ipq8074",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "kamorta",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012921",
         },
         {
            db: "NVD",
            id: "CVE-2020-11173",
         },
      ],
   },
   cve: "CVE-2020-11173",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "MEDIUM",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "PARTIAL",
                  baseScore: 4.4,
                  confidentialityImpact: "PARTIAL",
                  exploitabilityScore: 3.4,
                  id: "CVE-2020-11173",
                  impactScore: 6.4,
                  integrityImpact: "PARTIAL",
                  severity: "MEDIUM",
                  trust: 1.8,
                  vectorString: "AV:L/AC:M/Au:N/C:P/I:P/A:P",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "HIGH",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 7,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 1,
                  id: "CVE-2020-11173",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               {
                  attackComplexity: "High",
                  attackVector: "Local",
                  author: "NVD",
                  availabilityImpact: "High",
                  baseScore: 7,
                  baseSeverity: "High",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2020-11173",
                  impactScore: null,
                  integrityImpact: "High",
                  privilegesRequired: "Low",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2020-11173",
                  trust: 1,
                  value: "HIGH",
               },
               {
                  author: "NVD",
                  id: "CVE-2020-11173",
                  trust: 0.8,
                  value: "High",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-202010-311",
                  trust: 0.6,
                  value: "HIGH",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012921",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-311",
         },
         {
            db: "NVD",
            id: "CVE-2020-11173",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "u'Two threads running simultaneously from user space can lead to race condition in fastRPC driver' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in Agatti, APQ8053, Bitra, IPQ4019, IPQ5018, IPQ6018, IPQ8064, IPQ8074, Kamorta, MDM9607, MSM8953, Nicobar, QCA6390, QCS404, QCS405, QCS610, Rennell, SA515M, SA6155P, SA8155P, Saipan, SC8180X, SDA845, SDM429, SDM429W, SDM632, SDM660, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130. plural Qualcomm The product contains a vulnerability related to the use of freed memory.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. The Qualcomm chip is a chip of Qualcomm (Qualcomm). A way to miniaturize circuits (mainly including semiconductor equipment, but also passive components, etc.) and often manufactured on the surface of semiconductor wafers. \nMany Qualcomm products have a resource management error vulnerability. The vulnerability originates from the fact that two threads running at the same time may cause race conditions in the fastRPC driver",
      sources: [
         {
            db: "NVD",
            id: "CVE-2020-11173",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012921",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-311",
         },
         {
            db: "VULMON",
            id: "CVE-2020-11173",
         },
      ],
      trust: 2.25,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2020-11173",
            trust: 2.5,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012921",
            trust: 0.8,
         },
         {
            db: "AUSCERT",
            id: "ESB-2020.3453",
            trust: 0.6,
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-311",
            trust: 0.6,
         },
         {
            db: "VULMON",
            id: "CVE-2020-11173",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-11173",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012921",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-311",
         },
         {
            db: "NVD",
            id: "CVE-2020-11173",
         },
      ],
   },
   id: "VAR-202011-0215",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VARIoT devices database",
            id: null,
         },
      ],
      trust: 0.15924226,
   },
   last_update_date: "2024-11-23T21:06:52.831000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "October 2020 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
         },
         {
            title: "Google Android Security vulnerabilities",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=129608",
         },
         {
            title: "Threatpost",
            trust: 0.1,
            url: "https://threatpost.com/google-android-system-flaws/159948/",
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-11173",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012921",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-311",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-362",
            trust: 1,
         },
         {
            problemtype: "CWE-416",
            trust: 1,
         },
         {
            problemtype: "Use of freed memory (CWE-416) [NVD Evaluation ]",
            trust: 0.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012921",
         },
         {
            db: "NVD",
            id: "CVE-2020-11173",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.7,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
         },
         {
            trust: 1.6,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2020-11173",
         },
         {
            trust: 0.6,
            url: "https://www.auscert.org.au/bulletins/esb-2020.3453/",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-october-2020-33491",
         },
         {
            trust: 0.1,
            url: "https://nvd.nist.gov",
         },
         {
            trust: 0.1,
            url: "https://threatpost.com/google-android-system-flaws/159948/",
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-11173",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012921",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-311",
         },
         {
            db: "NVD",
            id: "CVE-2020-11173",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "VULMON",
            id: "CVE-2020-11173",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012921",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-311",
         },
         {
            db: "NVD",
            id: "CVE-2020-11173",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-11-02T00:00:00",
            db: "VULMON",
            id: "CVE-2020-11173",
         },
         {
            date: "2021-06-15T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2020-012921",
         },
         {
            date: "2020-10-06T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202010-311",
         },
         {
            date: "2020-11-02T07:15:14.153000",
            db: "NVD",
            id: "CVE-2020-11173",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-11-06T00:00:00",
            db: "VULMON",
            id: "CVE-2020-11173",
         },
         {
            date: "2021-06-15T03:03:00",
            db: "JVNDB",
            id: "JVNDB-2020-012921",
         },
         {
            date: "2021-07-13T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202010-311",
         },
         {
            date: "2024-11-21T04:57:03.403000",
            db: "NVD",
            id: "CVE-2020-11173",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202010-311",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Qualcomm  Product Free Memory Usage Vulnerability",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012921",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "resource management error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202010-311",
         },
      ],
      trust: 0.6,
   },
}

var-202011-1399
Vulnerability from variot

u'Buffer over-read issue in Bluetooth peripheral firmware due to lack of check for invalid opcode and length of opcode received from central device(This CVE is equivalent to Link Layer Length Overfow issue (CVE-2019-16336,CVE-2019-17519) and Silent Length Overflow issue(CVE-2019-17518) mentioned in sweyntooth paper)' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8053, APQ8076, AR9344, Bitra, Kamorta, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8917, MSM8937, MSM8940, MSM8953, Nicobar, QCA6174A, QCA9377, QCM2150, QCM6125, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SC8180X, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130. plural Qualcomm The product contains an out-of-bounds read vulnerability. This vulnerability is CVE-2019-16336 , CVE-2019-17519 , CVE-2019-17518 It is the same vulnerability as.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. The Qualcomm chip is a chip of Qualcomm (Qualcomm). A way to miniaturize circuits (mainly including semiconductor equipment, but also passive components, etc.) and often manufactured on the surface of semiconductor wafers. Many Qualcomm products have buffer error vulnerabilities. The vulnerability stems from the lack of checks for invalid opcodes and the opcode length of the central device in Bluetooth peripheral firmware

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-202011-1399",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "msm8953",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8053",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sc8180x",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8917",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx24",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs405",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "kamorta",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca9377",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs610",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8940",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcm2150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm8150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm7150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sm6150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcm6125",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "bitra",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qca6174a",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qm215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "nicobar",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9207c",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "apq8076",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8905",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx20",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "rennell",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "ar9344",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8937",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9207c",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "bitra",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "ar9344",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "msm8905",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9206",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8076",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "apq8053",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "msm8917",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
         {
            model: "kamorta",
            scope: null,
            trust: 0.8,
            vendor: "クアルコム",
            version: null,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012916",
         },
         {
            db: "NVD",
            id: "CVE-2020-3703",
         },
      ],
   },
   cve: "CVE-2020-3703",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "NETWORK",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "PARTIAL",
                  baseScore: 7.5,
                  confidentialityImpact: "PARTIAL",
                  exploitabilityScore: 10,
                  id: "CVE-2020-3703",
                  impactScore: 6.4,
                  integrityImpact: "PARTIAL",
                  severity: "HIGH",
                  trust: 1.8,
                  vectorString: "AV:N/AC:L/Au:N/C:P/I:P/A:P",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 9.8,
                  baseSeverity: "CRITICAL",
                  confidentialityImpact: "HIGH",
                  exploitabilityScore: 3.9,
                  id: "CVE-2020-3703",
                  impactScore: 5.9,
                  integrityImpact: "HIGH",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  trust: 1,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.1",
               },
               {
                  attackComplexity: "Low",
                  attackVector: "Network",
                  author: "NVD",
                  availabilityImpact: "High",
                  baseScore: 9.8,
                  baseSeverity: "Critical",
                  confidentialityImpact: "High",
                  exploitabilityScore: null,
                  id: "CVE-2020-3703",
                  impactScore: null,
                  integrityImpact: "High",
                  privilegesRequired: "None",
                  scope: "Unchanged",
                  trust: 0.8,
                  userInteraction: "None",
                  vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2020-3703",
                  trust: 1,
                  value: "CRITICAL",
               },
               {
                  author: "NVD",
                  id: "CVE-2020-3703",
                  trust: 0.8,
                  value: "Critical",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-202010-305",
                  trust: 0.6,
                  value: "CRITICAL",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012916",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-305",
         },
         {
            db: "NVD",
            id: "CVE-2020-3703",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "u'Buffer over-read issue in Bluetooth peripheral firmware due to lack of check for invalid opcode and length of opcode received from central device(This CVE is equivalent to Link Layer Length Overfow issue (CVE-2019-16336,CVE-2019-17519) and Silent Length Overflow issue(CVE-2019-17518) mentioned in sweyntooth paper)' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8053, APQ8076, AR9344, Bitra, Kamorta, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8917, MSM8937, MSM8940, MSM8953, Nicobar, QCA6174A, QCA9377, QCM2150, QCM6125, QCS404, QCS405, QCS605, QCS610, QM215, Rennell, SC8180X, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDX20, SDX24, SM6150, SM7150, SM8150, SXR1130. plural Qualcomm The product contains an out-of-bounds read vulnerability. This vulnerability is CVE-2019-16336 , CVE-2019-17519 , CVE-2019-17518 It is the same vulnerability as.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state. The Qualcomm chip is a chip of Qualcomm (Qualcomm). A way to miniaturize circuits (mainly including semiconductor equipment, but also passive components, etc.) and often manufactured on the surface of semiconductor wafers. \nMany Qualcomm products have buffer error vulnerabilities. The vulnerability stems from the lack of checks for invalid opcodes and the opcode length of the central device in Bluetooth peripheral firmware",
      sources: [
         {
            db: "NVD",
            id: "CVE-2020-3703",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012916",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-305",
         },
         {
            db: "VULMON",
            id: "CVE-2020-3703",
         },
      ],
      trust: 2.25,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2020-3703",
            trust: 2.5,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012916",
            trust: 0.8,
         },
         {
            db: "AUSCERT",
            id: "ESB-2020.3453",
            trust: 0.6,
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-305",
            trust: 0.6,
         },
         {
            db: "VULMON",
            id: "CVE-2020-3703",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-3703",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012916",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-305",
         },
         {
            db: "NVD",
            id: "CVE-2020-3703",
         },
      ],
   },
   id: "VAR-202011-1399",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VARIoT devices database",
            id: null,
         },
      ],
      trust: 0.16046866999999998,
   },
   last_update_date: "2024-11-23T21:09:20.251000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "October 2020 Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
         },
         {
            title: "Google Android Security vulnerabilities",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=129906",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012916",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-305",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-20",
            trust: 1,
         },
         {
            problemtype: "CWE-125",
            trust: 1,
         },
         {
            problemtype: "Out-of-bounds read (CWE-125) [NVD Evaluation ]",
            trust: 0.8,
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012916",
         },
         {
            db: "NVD",
            id: "CVE-2020-3703",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.7,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin",
         },
         {
            trust: 1.6,
            url: "https://www.qualcomm.com/company/product-security/bulletins/october-2020-security-bulletin",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2020-3703",
         },
         {
            trust: 0.6,
            url: "https://www.auscert.org.au/bulletins/esb-2020.3453/",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-october-2020-33491",
         },
         {
            trust: 0.1,
            url: "https://nvd.nist.gov",
         },
      ],
      sources: [
         {
            db: "VULMON",
            id: "CVE-2020-3703",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012916",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-305",
         },
         {
            db: "NVD",
            id: "CVE-2020-3703",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "VULMON",
            id: "CVE-2020-3703",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2020-012916",
         },
         {
            db: "CNNVD",
            id: "CNNVD-202010-305",
         },
         {
            db: "NVD",
            id: "CVE-2020-3703",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-11-02T00:00:00",
            db: "VULMON",
            id: "CVE-2020-3703",
         },
         {
            date: "2021-06-15T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2020-012916",
         },
         {
            date: "2020-10-06T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202010-305",
         },
         {
            date: "2020-11-02T07:15:15.247000",
            db: "NVD",
            id: "CVE-2020-3703",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2020-11-06T00:00:00",
            db: "VULMON",
            id: "CVE-2020-3703",
         },
         {
            date: "2021-06-15T02:50:00",
            db: "JVNDB",
            id: "JVNDB-2020-012916",
         },
         {
            date: "2021-08-16T00:00:00",
            db: "CNNVD",
            id: "CNNVD-202010-305",
         },
         {
            date: "2024-11-21T05:31:36.480000",
            db: "NVD",
            id: "CVE-2020-3703",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "remote",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202010-305",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Qualcomm  Out-of-bounds read vulnerabilities in the product",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2020-012916",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "buffer error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-202010-305",
         },
      ],
      trust: 0.6,
   },
}

var-201907-0556
Vulnerability from variot

Sanity checks are missing in layout which can lead to SUI Corruption or can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, Snapdragon_High_Med_2016, SXR1130. plural Snapdragon The product contains an input validation vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. An attacker can exploit these issues to perform unauthorized actions. This may aid in further attacks. These issues are being tracked by Android Bug IDs A-129766496, A-129766125, A-122473271, A-122474808, A-122472479, A-122473168, A-122473304, A-122473496, A-122473989, A-129766432, A-129766099 and A-129766299

Show details on source website

To clipboard 

{
   "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
      affected_products: {
         "@id": "https://www.variotdbs.pl/ref/affected_products",
      },
      configurations: {
         "@id": "https://www.variotdbs.pl/ref/configurations",
      },
      credits: {
         "@id": "https://www.variotdbs.pl/ref/credits",
      },
      cvss: {
         "@id": "https://www.variotdbs.pl/ref/cvss/",
      },
      description: {
         "@id": "https://www.variotdbs.pl/ref/description/",
      },
      exploit_availability: {
         "@id": "https://www.variotdbs.pl/ref/exploit_availability/",
      },
      external_ids: {
         "@id": "https://www.variotdbs.pl/ref/external_ids/",
      },
      iot: {
         "@id": "https://www.variotdbs.pl/ref/iot/",
      },
      iot_taxonomy: {
         "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/",
      },
      patch: {
         "@id": "https://www.variotdbs.pl/ref/patch/",
      },
      problemtype_data: {
         "@id": "https://www.variotdbs.pl/ref/problemtype_data/",
      },
      references: {
         "@id": "https://www.variotdbs.pl/ref/references/",
      },
      sources: {
         "@id": "https://www.variotdbs.pl/ref/sources/",
      },
      sources_release_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_release_date/",
      },
      sources_update_date: {
         "@id": "https://www.variotdbs.pl/ref/sources_update_date/",
      },
      threat_type: {
         "@id": "https://www.variotdbs.pl/ref/threat_type/",
      },
      title: {
         "@id": "https://www.variotdbs.pl/ref/title/",
      },
      type: {
         "@id": "https://www.variotdbs.pl/ref/type/",
      },
   },
   "@id": "https://www.variotdbs.pl/vuln/VAR-201907-0556",
   affected_products: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            model: "sdx24",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 427",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sda660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 710",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 425",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 675",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 429",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "215",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820a",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 730",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 615",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm660",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 450",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9655",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9640",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 616",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 435",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sxr1130",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 712",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 625",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 632",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 8cx",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 410",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 415",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 205",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 212",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 835",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 652",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "snapdragon high med 2016",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 850",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm630",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 845",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 820",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdm439",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 670",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sdx20",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9635m",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 412",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 430",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 210",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "sd 636",
            scope: "eq",
            trust: 1,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9150",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9206",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9607",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9635m",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9640",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9650",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "mdm9655",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "msm8996au",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs404",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "qcs605",
            scope: null,
            trust: 0.8,
            vendor: "qualcomm",
            version: null,
         },
         {
            model: "pixel xl",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "pixel c",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "pixel",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "nexus player",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "9",
         },
         {
            model: "nexus 6p",
            scope: null,
            trust: 0.3,
            vendor: "google",
            version: null,
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "6",
         },
         {
            model: "nexus",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "5x",
         },
         {
            model: "android",
            scope: "eq",
            trust: 0.3,
            vendor: "google",
            version: "0",
         },
      ],
      sources: [
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006904",
         },
         {
            db: "NVD",
            id: "CVE-2019-2239",
         },
      ],
   },
   configurations: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/configurations#",
         children: {
            "@container": "@list",
         },
         cpe_match: {
            "@container": "@list",
         },
         data: {
            "@container": "@list",
         },
         nodes: {
            "@container": "@list",
         },
      },
      data: [
         {
            CVE_data_version: "4.0",
            nodes: [
               {
                  cpe_match: [
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9150_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9206_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9607_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9635m_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9640_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9650_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:mdm9655_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:msm8996au_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs404_firmware",
                        vulnerable: true,
                     },
                     {
                        cpe22Uri: "cpe:/o:qualcomm:qcs605_firmware",
                        vulnerable: true,
                     },
                  ],
                  operator: "OR",
               },
            ],
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-006904",
         },
      ],
   },
   credits: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/credits#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "The vendor reported these issues.",
      sources: [
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-082",
         },
      ],
      trust: 0.9,
   },
   cve: "CVE-2019-2239",
   cvss: {
      "@context": {
         cvssV2: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2",
         },
         cvssV3: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/",
         },
         severity: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/cvss/severity#",
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
            "@id": "https://www.variotdbs.pl/ref/sources",
         },
      },
      data: [
         {
            cvssV2: [
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "nvd@nist.gov",
                  availabilityImpact: "PARTIAL",
                  baseScore: 2.1,
                  confidentialityImpact: "NONE",
                  exploitabilityScore: 3.9,
                  id: "CVE-2019-2239",
                  impactScore: 2.9,
                  integrityImpact: "NONE",
                  severity: "LOW",
                  trust: 1.8,
                  vectorString: "AV:L/AC:L/Au:N/C:N/I:N/A:P",
                  version: "2.0",
               },
               {
                  accessComplexity: "LOW",
                  accessVector: "LOCAL",
                  authentication: "NONE",
                  author: "VULHUB",
                  availabilityImpact: "PARTIAL",
                  baseScore: 2.1,
                  confidentialityImpact: "NONE",
                  exploitabilityScore: 3.9,
                  id: "VHN-153674",
                  impactScore: 2.9,
                  integrityImpact: "NONE",
                  severity: "LOW",
                  trust: 0.1,
                  vectorString: "AV:L/AC:L/AU:N/C:N/I:N/A:P",
                  version: "2.0",
               },
            ],
            cvssV3: [
               {
                  attackComplexity: "LOW",
                  attackVector: "LOCAL",
                  author: "nvd@nist.gov",
                  availabilityImpact: "HIGH",
                  baseScore: 5.5,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "NONE",
                  exploitabilityScore: 1.8,
                  id: "CVE-2019-2239",
                  impactScore: 3.6,
                  integrityImpact: "NONE",
                  privilegesRequired: "LOW",
                  scope: "UNCHANGED",
                  trust: 1.8,
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.0",
               },
            ],
            severity: [
               {
                  author: "nvd@nist.gov",
                  id: "CVE-2019-2239",
                  trust: 1,
                  value: "MEDIUM",
               },
               {
                  author: "NVD",
                  id: "CVE-2019-2239",
                  trust: 0.8,
                  value: "Medium",
               },
               {
                  author: "CNNVD",
                  id: "CNNVD-201907-082",
                  trust: 0.6,
                  value: "MEDIUM",
               },
               {
                  author: "VULHUB",
                  id: "VHN-153674",
                  trust: 0.1,
                  value: "LOW",
               },
            ],
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153674",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006904",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-082",
         },
         {
            db: "NVD",
            id: "CVE-2019-2239",
         },
      ],
   },
   description: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/description#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "Sanity checks are missing in layout which can lead to SUI Corruption or can lead to Denial of Service in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9150, MDM9206, MDM9607, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, SDX24, Snapdragon_High_Med_2016, SXR1130. plural Snapdragon The product contains an input validation vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. Qualcomm Closed-Source Components are prone to multiple unspecified vulnerabilities. \nAn attacker can exploit these issues to perform unauthorized actions. This may aid in further attacks. \nThese issues are being tracked by Android Bug IDs A-129766496, A-129766125, A-122473271, A-122474808, A-122472479, A-122473168, A-122473304, A-122473496, A-122473989, A-129766432, A-129766099 and A-129766299",
      sources: [
         {
            db: "NVD",
            id: "CVE-2019-2239",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006904",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "VULHUB",
            id: "VHN-153674",
         },
      ],
      trust: 1.98,
   },
   external_ids: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            db: "NVD",
            id: "CVE-2019-2239",
            trust: 2.8,
         },
         {
            db: "BID",
            id: "108986",
            trust: 0.9,
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006904",
            trust: 0.8,
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-082",
            trust: 0.6,
         },
         {
            db: "VULHUB",
            id: "VHN-153674",
            trust: 0.1,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153674",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006904",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-082",
         },
         {
            db: "NVD",
            id: "CVE-2019-2239",
         },
      ],
   },
   id: "VAR-201907-0556",
   iot: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/iot#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: true,
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153674",
         },
      ],
      trust: 0.01,
   },
   last_update_date: "2024-11-23T21:37:05.746000Z",
   patch: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/patch#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            title: "July 2019 Qualcomm Technologies, Inc. Security Bulletin",
            trust: 0.8,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            title: "Multiple Qualcomm Product input verification error vulnerability fixes",
            trust: 0.6,
            url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=94316",
         },
      ],
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-006904",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-082",
         },
      ],
   },
   problemtype_data: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            problemtype: "CWE-129",
            trust: 1,
         },
         {
            problemtype: "CWE-20",
            trust: 0.9,
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153674",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006904",
         },
         {
            db: "NVD",
            id: "CVE-2019-2239",
         },
      ],
   },
   references: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/references#",
         data: {
            "@container": "@list",
         },
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: [
         {
            trust: 1.7,
            url: "https://www.qualcomm.com/company/product-security/bulletins",
         },
         {
            trust: 1.4,
            url: "https://nvd.nist.gov/vuln/detail/cve-2019-2239",
         },
         {
            trust: 0.9,
            url: "http://code.google.com/android/",
         },
         {
            trust: 0.9,
            url: "http://www.qualcomm.com/",
         },
         {
            trust: 0.9,
            url: "https://source.android.com/security/bulletin/2019-07-01.html",
         },
         {
            trust: 0.8,
            url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-2239",
         },
         {
            trust: 0.6,
            url: "https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-july-2019-29673",
         },
         {
            trust: 0.6,
            url: "https://www.securityfocus.com/bid/108986",
         },
      ],
      sources: [
         {
            db: "VULHUB",
            id: "VHN-153674",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006904",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-082",
         },
         {
            db: "NVD",
            id: "CVE-2019-2239",
         },
      ],
   },
   sources: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            db: "VULHUB",
            id: "VHN-153674",
         },
         {
            db: "BID",
            id: "108986",
         },
         {
            db: "JVNDB",
            id: "JVNDB-2019-006904",
         },
         {
            db: "CNNVD",
            id: "CNNVD-201907-082",
         },
         {
            db: "NVD",
            id: "CVE-2019-2239",
         },
      ],
   },
   sources_release_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2019-07-25T00:00:00",
            db: "VULHUB",
            id: "VHN-153674",
         },
         {
            date: "2019-07-01T00:00:00",
            db: "BID",
            id: "108986",
         },
         {
            date: "2019-07-30T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-006904",
         },
         {
            date: "2019-07-02T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201907-082",
         },
         {
            date: "2019-07-25T17:15:12.223000",
            db: "NVD",
            id: "CVE-2019-2239",
         },
      ],
   },
   sources_update_date: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
         data: {
            "@container": "@list",
         },
      },
      data: [
         {
            date: "2019-07-26T00:00:00",
            db: "VULHUB",
            id: "VHN-153674",
         },
         {
            date: "2019-07-01T00:00:00",
            db: "BID",
            id: "108986",
         },
         {
            date: "2019-07-30T00:00:00",
            db: "JVNDB",
            id: "JVNDB-2019-006904",
         },
         {
            date: "2019-07-29T00:00:00",
            db: "CNNVD",
            id: "CNNVD-201907-082",
         },
         {
            date: "2024-11-21T04:40:30.490000",
            db: "NVD",
            id: "CVE-2019-2239",
         },
      ],
   },
   threat_type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "local",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201907-082",
         },
      ],
      trust: 0.6,
   },
   title: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/title#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "plural  Snapdragon Vulnerability related to input validation in products",
      sources: [
         {
            db: "JVNDB",
            id: "JVNDB-2019-006904",
         },
      ],
      trust: 0.8,
   },
   type: {
      "@context": {
         "@vocab": "https://www.variotdbs.pl/ref/type#",
         sources: {
            "@container": "@list",
            "@context": {
               "@vocab": "https://www.variotdbs.pl/ref/sources#",
            },
         },
      },
      data: "input validation error",
      sources: [
         {
            db: "CNNVD",
            id: "CNNVD-201907-082",
         },
      ],
      trust: 0.6,
   },
}