EUVD-2019-2291

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Buffer over read occurs in parsing SMS OTA messages across various Snapdragon platforms and models

Reporter	Title	Published	Views	Family All 7
Circl	CVE-2019-10487	20 Jan 202608:04	–	circl
CNVD	Buffer Overflow Vulnerability in Multiple Qualcomm Products (CNVD-2020-03580)	25 Dec 201900:00	–	cnvd
CVE	CVE-2019-10487	18 Dec 201905:25	–	cve
Cvelist	CVE-2019-10487	18 Dec 201905:25	–	cvelist
NVD	CVE-2019-10487	18 Dec 201906:15	–	nvd
Prion	Buffer overflow	18 Dec 201906:15	–	prion
RedhatCVE	CVE-2019-10487	22 May 202510:24	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "e5d8330d-17d3-37f1-bb7f-11a5259eface",
        "vendor": {
          "name": "Qualcomm, Inc."
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "ded86a58-ea58-357a-810b-0ef4ce2a81da",
        "product": {
          "name": "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables"
        },
        "product_version": "APQ8009, APQ8017, APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9205, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8939, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, SC8180X, SDA660, SDA845, SDM429, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130"
      }
    ]
  }
]

Source	Link
qualcomm	www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

9.2High risk

Vulners AI Score9.2

CVSS 3.19.8

CVSS 210

EPSS0.00396