Lucene search

QualcommCVELIST:CVE-2019-14056

HistorySep 08, 2020 - 9:31 a.m.

CVE-2019-14056

2020-09-0809:31:31

qualcomm

www.cve.org

integer overflow

api

large oid range

cert extension field

snapdragon

kamorta

mdm9150

mdm9205

mdm9607

mdm9650

nicobar

qcs404

qcs405

qcs605

qcs610

rennell

sa6155p

sc7180

sc8180x

sda660

sda845

sdm630

sdm636

sdm660

sdm670

sdm710

sdm845

sdm850

sdx55

sm6150

sm7150

sm8150

sxr1130

sxr2130

EPSS

Percentile

12.6%

JSON

u’Possible integer overflow in API due to lack of check on large oid range count in cert extension field’ in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130

CNA Affected

[
  {
    "product": "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "Kamorta, MDM9150, MDM9205, MDM9607, MDM9650, Nicobar, QCS404, QCS405, QCS605, QCS610, Rennell, SA6155P, SC7180, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SXR1130, SXR2130"
      }
    ]
  }
]

References

www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin

EPSS

Percentile

12.6%

JSON

Related for CVELIST:CVE-2019-14056