CVE-2019-2338

🗓️ 12 Dec 2019 08:30:44Reported by qualcommType

Crafted image with valid signature can read/write secure memory in multiple Snapdragon platform

Reporter	Title	Published	Views	Family All 5
CVE	CVE-2019-2338	12 Dec 201908:30	–	cve
EUVD	EUVD-2019-11980	7 Oct 202500:30	–	euvd
NVD	CVE-2019-2338	12 Dec 201909:15	–	nvd
Prion	Code injection	12 Dec 201909:15	–	prion
RedhatCVE	CVE-2019-2338	9 Jan 202610:13	–	redhatcve

[
  {
    "product": "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "MDM9205, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130"
      }
    ]
  }
]

Source	Link
qualcomm	www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin

12 Dec 2019 08:30Current

7High risk

Vulners AI Score7

EPSS0.00043