CVE-2019-14092

CVE Database · CVE-2019-14092

CVE-2019-14092

· MEDIUMModified

CVSS v3.1

5.5

EPSS

0.19%

Published

Jun 22, 2020

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

System Services exports services without permission protect and can lead to information exposure in Snapdragon Industrial IOT, Snapdragon Mobile in MDM9206, MDM9207C, MDM9607, Rennell, Saipan, SM8150, SM8250, SXR2130

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected Products (16)

qualcomm · mdm9206_firmwarevulnerable

qualcomm · mdm9206

qualcomm · mdm9207c_firmwarevulnerable

qualcomm · mdm9207c

qualcomm · mdm9607_firmwarevulnerable

qualcomm · mdm9607

qualcomm · rennell_firmwarevulnerable

qualcomm · rennell

qualcomm · saipan_firmwarevulnerable

qualcomm · saipan

qualcomm · sm8150_firmwarevulnerable

· sm8150

References (3)

https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletin

Broken Link

https://www.qualcomm.com/company/product-security/bulletins/june-2020-security-bulletin

Vendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletin

Broken Link

KEV Catalog EPSS Scores Vendors All CVEs