CVE-2019-10538

CVE Database · CVE-2019-10538

CVE-2019-10538

· CRITICALModified

CVSS v3.1

9.8

EPSS

1.11%

Published

Sep 30, 2019

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Lack of check of address range received from firmware response allows modem to respond arbitrary pages into its address range which can compromise HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MSM8909W, MSM8996AU, QCS405, QCS605, Qualcomm 215, SD 425, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820A, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM660, SDX20, SDX24

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-20

Affected Products (54)

qualcomm · msm8909w_firmwarevulnerable

qualcomm · msm8909w

qualcomm · msm8996au_firmwarevulnerable

qualcomm · msm8996au

qualcomm · qcs405_firmwarevulnerable

qualcomm · qcs405

qualcomm · qcs605_firmwarevulnerable

qualcomm · qcs605

qualcomm · qualcomm_215_firmwarevulnerable

qualcomm · qualcomm_215

qualcomm · sd_425_firmwarevulnerable

· sd_425

References (2)

https://www.codeaurora.org/security-bulletin/2019/08/05/august-2019-code-aurora-security-bulletin

PatchThird Party Advisory

https://www.codeaurora.org/security-bulletin/2019/08/05/august-2019-code-aurora-security-bulletin

PatchThird Party Advisory

KEV Catalog EPSS Scores Vendors All CVEs