← Retour aux CVEs
CVE-2019-10612
CRITICAL9.8
Description
UTCB object has a function pointer called by the reaper to deallocate its memory resources and this address can potentially be corrupted by stack overflow in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, MDM9650, QCS605, SA6155P, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
Details CVE
Score CVSS v3.19.8
SeveriteCRITICAL
Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vecteur d'attaqueNETWORK
ComplexiteLOW
Privileges requisNONE
Interaction utilisateurNONE
Publie3/5/2020
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0
Produits affectes
qualcomm:mdm9205qualcomm:mdm9205_firmwarequalcomm:mdm9650qualcomm:mdm9650_firmwarequalcomm:qcs605qualcomm:qcs605_firmwarequalcomm:sa6155pqualcomm:sa6155p_firmwarequalcomm:sc8180xqualcomm:sc8180x_firmwarequalcomm:sda845qualcomm:sda845_firmwarequalcomm:sdm670qualcomm:sdm670_firmwarequalcomm:sdm710qualcomm:sdm710_firmwarequalcomm:sdm845qualcomm:sdm845_firmwarequalcomm:sdm850qualcomm:sdm850_firmwarequalcomm:sdx55qualcomm:sdx55_firmwarequalcomm:sm6150qualcomm:sm6150_firmwarequalcomm:sm7150qualcomm:sm7150_firmwarequalcomm:sm8150qualcomm:sm8150_firmwarequalcomm:sm8250qualcomm:sm8250_firmwarequalcomm:sxr1130qualcomm:sxr1130_firmwarequalcomm:sxr2130qualcomm:sxr2130_firmware
Faiblesses (CWE)
CWE-787
References
https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin(product-security@qualcomm.com)
https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.