CVE-2019-10508

🗓️ 30 Sep 2019 15:40:34Reported by qualcommType

Lack of input validation for user data can lead to OOB access in various Snapdragon device

Reporter	Title	Published	Views	Family All 5
CVE	CVE-2019-10508	30 Sep 201915:40	–	cve
EUVD	EUVD-2019-2312	7 Oct 202500:30	–	euvd
NVD	CVE-2019-10508	30 Sep 201916:15	–	nvd
Prion	Input validation	30 Sep 201916:15	–	prion
RedhatCVE	CVE-2019-10508	22 May 202510:25	–	redhatcve

[
  {
    "product": "Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, MSM8996AU, QCA6174A, QCA6574AU, QCA9377, QCA9379, SD 210/SD 212/SD 205, SD 425, SD 430, SD 600, SD 615/16/SD 415, SD 625, SD 632, SD 650/52, SD 820A, SDX20"
      }
    ]
  }
]

Source	Link
codeaurora	www.codeaurora.org/security-bulletin/2019/08/05/august-2019-code-aurora-security-bulletin

30 Sep 2019 15:40Current

8.3High risk

Vulners AI Score8.3

EPSS0.00042