Sign-up

ID

VAR-201907-0628


CVE

CVE-2019-2307


TITLE

plural Snapdragon Product out-of-bounds vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2019-006997

DESCRIPTION

Possible integer underflow due to lack of validation before calculation of data length in 802.11 Rx management configuration in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574AU, QCA9377, QCA9379, QCS405, QCS605, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 450, SD 600, SD 625, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDM630, SDM660, SDX20, SDX24. plural Snapdragon The product contains an out-of-bounds vulnerability and an integer underflow vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm Components are prone to an integer-underflow vulnerability because they fail to sufficiently validate an integer value. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploits may result in denial-of-service conditions. This issue is being tracked by Android Bug ID A-129850941. Qualcomm MDM9206 and others are products of Qualcomm (Qualcomm). MDM9206 is a central processing unit (CPU) product. MDM9607 is a central processing unit (CPU) product. SDX20 is a modem. Numerical error vulnerabilities exist in several Qualcomm products. The vulnerability stems from incorrect calculations or conversions of numbers generated by networked systems or products. Attackers can exploit this vulnerability to cause integer overflow or sign error, etc

Trust: 1.98

sources: NVD: CVE-2019-2307 // JVNDB: JVNDB-2019-006997 // BID: 109383 // VULHUB: VHN-153742

AFFECTED PRODUCTS

vendor:qualcommmodel:qca9379scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdx24scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcs405scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 427scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 710scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 425scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 675scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 820ascope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:mdm9607scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca9377scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 730scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:mdm9206scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdm660scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 450scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:mdm9640scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:mdm9150scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 435scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 665scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 712scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 625scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:msm8996auscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qcs605scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 205scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 212scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 835scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:mdm9650scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 850scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdm630scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6574auscope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 845scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:qca6174ascope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 820scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 600scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 670scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sdx20scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 855scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 430scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 210scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:sd 636scope:eqversion: -

Trust: 1.0

vendor:qualcommmodel:mdm9150scope: - version: -

Trust: 0.8

vendor:qualcommmodel:mdm9206scope: - version: -

Trust: 0.8

vendor:qualcommmodel:mdm9607scope: - version: -

Trust: 0.8

vendor:qualcommmodel:mdm9640scope: - version: -

Trust: 0.8

vendor:qualcommmodel:mdm9650scope: - version: -

Trust: 0.8

vendor:qualcommmodel:msm8996auscope: - version: -

Trust: 0.8

vendor:qualcommmodel:qca6174ascope: - version: -

Trust: 0.8

vendor:qualcommmodel:qca6574auscope: - version: -

Trust: 0.8

vendor:qualcommmodel:qca9377scope: - version: -

Trust: 0.8

vendor:qualcommmodel:qca9379scope: - version: -

Trust: 0.8

vendor:googlemodel:pixel xlscope:eqversion:0

Trust: 0.3

vendor:googlemodel:pixel cscope:eqversion:0

Trust: 0.3

vendor:googlemodel:pixelscope:eqversion:0

Trust: 0.3

vendor:googlemodel:nexus playerscope:eqversion:0

Trust: 0.3

vendor:googlemodel:nexusscope:eqversion:9

Trust: 0.3

vendor:googlemodel:nexus 6pscope: - version: -

Trust: 0.3

vendor:googlemodel:nexusscope:eqversion:6

Trust: 0.3

vendor:googlemodel:nexusscope:eqversion:5x

Trust: 0.3

vendor:googlemodel:androidscope:eqversion:0

Trust: 0.3

sources: BID: 109383 // JVNDB: JVNDB-2019-006997 // NVD: CVE-2019-2307

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2019-2307
value: CRITICAL

Trust: 1.0

NVD: CVE-2019-2307
value: CRITICAL

Trust: 0.8

CNNVD: CNNVD-201907-073
value: CRITICAL

Trust: 0.6

VULHUB: VHN-153742
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2019-2307
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-153742
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2019-2307
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-153742 // JVNDB: JVNDB-2019-006997 // CNNVD: CNNVD-201907-073 // NVD: CVE-2019-2307

PROBLEMTYPE DATA

problemtype:CWE-125

Trust: 1.9

problemtype:CWE-191

Trust: 1.9

sources: VULHUB: VHN-153742 // JVNDB: JVNDB-2019-006997 // NVD: CVE-2019-2307

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201907-073

TYPE

digital error

Trust: 0.6

sources: CNNVD: CNNVD-201907-073

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2019-006997

PATCH
title:July 2019 Code Aurora Security Bulletinurl:https://www.codeaurora.org/security-bulletin/2019/07/01/july-2019-code-aurora-security-bulletin
Trust: 0.8
title:Android Qualcomm WLAN HOST Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=94307
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2019-006997 // 
            
            
            
            CNNVD: CNNVD-201907-073

EXTERNAL IDS
db:NVDid:CVE-2019-2307
Trust: 2.8
db:BIDid:109383
Trust: 2.0
db:JVNDBid:JVNDB-2019-006997
Trust: 0.8
db:CNNVDid:CNNVD-201907-073
Trust: 0.7
db:VULHUBid:VHN-153742
Trust: 0.1
sources:
            
            
            VULHUB: VHN-153742 // 
            
            
            
            BID: 109383 // 
            
            
            
            JVNDB: JVNDB-2019-006997 // 
            
            
            
            CNNVD: CNNVD-201907-073 // 
            
            
            
            NVD: CVE-2019-2307

REFERENCES
url:https://www.codeaurora.org/security-bulletin/2019/07/01/july-2019-code-aurora-security-bulletin
Trust: 2.0
url:http://www.securityfocus.com/bid/109383
Trust: 1.7
url:https://nvd.nist.gov/vuln/detail/cve-2019-2307
Trust: 1.4
url:http://www.qualcomm.com/
Trust: 0.9
url:https://source.android.com/security/bulletin/2019-07-01.html
Trust: 0.9
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-2307
Trust: 0.8
url:https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-july-2019-29673
Trust: 0.6
sources:
            
            
            VULHUB: VHN-153742 // 
            
            
            
            BID: 109383 // 
            
            
            
            JVNDB: JVNDB-2019-006997 // 
            
            
            
            CNNVD: CNNVD-201907-073 // 
            
            
            
            NVD: CVE-2019-2307

CREDITS
The vendor reported this issue.
Trust: 0.3
sources:
            
            
            BID: 109383

SOURCES
db:VULHUBid:VHN-153742
db:BIDid:109383
db:JVNDBid:JVNDB-2019-006997
db:CNNVDid:CNNVD-201907-073
db:NVDid:CVE-2019-2307

LAST UPDATE DATE
2024-11-23T23:04:45.049000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-153742date:2019-07-29T00:00:00
db:BIDid:109383date:2019-07-26T00:00:00
db:JVNDBid:JVNDB-2019-006997date:2019-07-31T00:00:00
db:CNNVDid:CNNVD-201907-073date:2019-08-01T00:00:00
db:NVDid:CVE-2019-2307date:2024-11-21T04:40:40.260

SOURCES RELEASE DATE
db:VULHUBid:VHN-153742date:2019-07-25T00:00:00
db:BIDid:109383date:2019-07-26T00:00:00
db:JVNDBid:JVNDB-2019-006997date:2019-07-31T00:00:00
db:CNNVDid:CNNVD-201907-073date:2019-07-02T00:00:00
db:NVDid:CVE-2019-2307date:2019-07-25T17:15:13.347