CVE-2019-2309
CRITICAL
9.8
CVSS Severity Score
Vulnerability Description
While storing calibrated data from firmware in cache, An integer overflow may occur since data length received may exceed real data length. in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574AU, QCA9377, QCA9379, SD 210/SD 212/SD 205, SD 425, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820A, SD 845 / SD 850, SDM660, SDX20
Affected Platforms (CPE)
💻
Qualcomm
Mdm9150 Firmware
All versions💻
Qualcomm
Mdm9206 Firmware
All versions💻
Qualcomm
Mdm9607 Firmware
All versions💻
Qualcomm
Mdm9640 Firmware
All versions💻
Qualcomm
Mdm9650 Firmware
All versions💻
Qualcomm
Msm8996au Firmware
All versions💻
Qualcomm
Qca6174a Firmware
All versions💻
Qualcomm
Qca6574au Firmware
All versions💻
Qualcomm
Qca9377 Firmware
All versions💻
Qualcomm
Qca9379 Firmware
All versions💻
Qualcomm
Sd 210 Firmware
All versions💻
Qualcomm
Sd 212 Firmware
All versions💻
Qualcomm
Sd 205 Firmware
All versions💻
Qualcomm
Sd 425 Firmware
All versions💻
Qualcomm
Sd 625 Firmware
All versions💻
Qualcomm
Sd 636 Firmware
All versions💻
Qualcomm
Sd 712 Firmware
All versions💻
Qualcomm
Sd 710 Firmware
All versions💻
Qualcomm
Sd 670 Firmware
All versions💻
Qualcomm
Sd 820a Firmware
All versions💻
Qualcomm
Sd 845 Firmware
All versions💻
Qualcomm
Sd 850 Firmware
All versions💻
Qualcomm
Sdm660 Firmware
All versions💻
Qualcomm