Details of VAR-201907-0868

ID

VAR-201907-0868

CVE

CVE-2019-2269

TITLE

plural Snapdragon Product buffer error vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2019-006571

DESCRIPTION

Possible buffer overflow while processing the high level lim process action frame due to improper buffer length validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9150, MDM9650, MSM8996AU, QCS405, QCS605, SD 625, SD 636, SD 665, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130. plural Snapdragon The product contains a buffer error vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm Components are prone to the following security vulnerabilities: 1. Multiple buffer-overflow vulnerabilities 2. A denial-of-service vulnerability An attacker can exploit these issues to execute arbitrary code, and cause a denial-of-service condition. This may aid in further attacks. These issues are being tracked by Android Bug IDs A-123700924, A-114399807, A-123999895, and A-127513046. Qualcomm MDM9650 and others are products of Qualcomm (Qualcomm). MDM9650 is a central processing unit (CPU) product. MSM8996AU is a central processing unit (CPU) product. SDX20 is a modem. WLAN is one of the wireless local area network components. A buffer error vulnerability exists in WLAN in several Qualcomm products. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. The following products and versions are affected: Qualcomm MDM9150; MDM9650; MSM8996AU; QCS405; QCS605; SD 625; SD 636; SD 665; SD 712; SD 710; SD 670; ;SD 850;SD 855;SDA660;SDM630;SDM660;SDX20;SDX24;SXR1130

Trust: 2.07

sources: NVD: CVE-2019-2269 // JVNDB: JVNDB-2019-006571 // BID: 108555 // VULHUB: VHN-153704 // VULMON: CVE-2019-2269

AFFECTED PRODUCTS

vendor:	qualcomm	model:	msm8996au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdx24	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs605	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs405	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sda660	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 835	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 710	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 820a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 730	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9650	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 850	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm630	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm660	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 845	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 820	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9150	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 670	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdx20	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 855	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sxr1130	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 665	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 712	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 636	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 625	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9150	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	mdm9650	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	msm8996au	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qcs405	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qcs605	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 625	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 636	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 665	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 710	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	sd 712	scope:	-	version:	-	Trust: 0.8
vendor:	google	model:	pixel xl	scope:	eq	version:	0	Trust: 0.3
vendor:	google	model:	pixel c	scope:	eq	version:	0	Trust: 0.3
vendor:	google	model:	pixel	scope:	eq	version:	0	Trust: 0.3
vendor:	google	model:	nexus player	scope:	eq	version:	0	Trust: 0.3
vendor:	google	model:	nexus	scope:	eq	version:	9	Trust: 0.3
vendor:	google	model:	nexus 6p	scope:	-	version:	-	Trust: 0.3
vendor:	google	model:	nexus	scope:	eq	version:	6	Trust: 0.3
vendor:	google	model:	nexus	scope:	eq	version:	5x	Trust: 0.3
vendor:	google	model:	android	scope:	eq	version:	0	Trust: 0.3

sources: BID: 108555 // JVNDB: JVNDB-2019-006571 // NVD: CVE-2019-2269

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2019-2269
value:	CRITICAL
Trust: 1.0
NVD:	CVE-2019-2269
value:	CRITICAL
Trust: 0.8
CNNVD:	CNNVD-201906-085
value:	CRITICAL
Trust: 0.6
VULHUB:	VHN-153704
value:	HIGH
Trust: 0.1
VULMON:	CVE-2019-2269
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2019-2269
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-153704
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2019-2269
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: VULHUB: VHN-153704 // VULMON: CVE-2019-2269 // JVNDB: JVNDB-2019-006571 // CNNVD: CNNVD-201906-085 // NVD: CVE-2019-2269

PROBLEMTYPE DATA

problemtype:

CWE-119

Trust: 1.9

sources: VULHUB: VHN-153704 // JVNDB: JVNDB-2019-006571 // NVD: CVE-2019-2269

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201906-085

TYPE

buffer error

Trust: 0.6

sources: CNNVD: CNNVD-201906-085

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-006571

PATCH

title:	June 2019 Code Aurora Security Bulletin	url:	https://www.codeaurora.org/security-bulletin/2019/06/03/june-2019-code-aurora-security-bulletin	Trust: 0.8
title:	Qualcomm WLAN HOST Fixes for component security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=93174	Trust: 0.6
title:	The Register	url:	https://www.theregister.co.uk/2019/06/05/android_june_patch/	Trust: 0.2

sources: VULMON: CVE-2019-2269 // JVNDB: JVNDB-2019-006571 // CNNVD: CNNVD-201906-085

EXTERNAL IDS

db:	NVD	id:	CVE-2019-2269	Trust: 2.9
db:	BID	id:	108555	Trust: 1.0
db:	JVNDB	id:	JVNDB-2019-006571	Trust: 0.8
db:	CNNVD	id:	CNNVD-201906-085	Trust: 0.7
db:	VULHUB	id:	VHN-153704	Trust: 0.1
db:	VULMON	id:	CVE-2019-2269	Trust: 0.1

sources: VULHUB: VHN-153704 // VULMON: CVE-2019-2269 // BID: 108555 // JVNDB: JVNDB-2019-006571 // CNNVD: CNNVD-201906-085 // NVD: CVE-2019-2269

REFERENCES

url:	https://www.codeaurora.org/security-bulletin/2019/06/03/june-2019-code-aurora-security-bulletin	Trust: 1.8
url:	https://nvd.nist.gov/vuln/detail/cve-2019-2269	Trust: 1.4
url:	http://code.google.com/android/	Trust: 0.9
url:	https://source.codeaurora.org/quic/la/kernel/msm-3.18/commit/?id=9c0fa2ad7dab4d11c866cb4677c3cd2561b829b	Trust: 0.9
url:	https://source.codeaurora.org/quic/la/kernel/msm-4.9/commit?id=3186af9f3ece8d5d07a3d62cc1a64b448eab375b	Trust: 0.9
url:	https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-3.0/commit/?h=wlan-cld3.driver.lnx.1.1.r41-rel&id=a01623699ad76fc6947483b063727f417d526df7	Trust: 0.9
url:	https://source.codeaurora.org/quic/la/platform/vendor/qcom-opensource/wlan/qcacld-3.0/commit/?id=d056949890ebd0ab90b284c34886e51a6c1e1515	Trust: 0.9
url:	http://www.qualcomm.com/	Trust: 0.9
url:	https://source.android.com/security/bulletin/2019-06-01.html	Trust: 0.9
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-2269	Trust: 0.8
url:	https://www.securityfocus.com/bid/108555	Trust: 0.7
url:	https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-june-2019-29461	Trust: 0.6
url:	https://cwe.mitre.org/data/definitions/119.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1

sources: VULHUB: VHN-153704 // VULMON: CVE-2019-2269 // BID: 108555 // JVNDB: JVNDB-2019-006571 // CNNVD: CNNVD-201906-085 // NVD: CVE-2019-2269

CREDITS

The vendor reported this issue.

Trust: 0.3

sources: BID: 108555

SOURCES

db:	VULHUB	id:	VHN-153704
db:	VULMON	id:	CVE-2019-2269
db:	BID	id:	108555
db:	JVNDB	id:	JVNDB-2019-006571
db:	CNNVD	id:	CNNVD-201906-085
db:	NVD	id:	CVE-2019-2269

LAST UPDATE DATE

2024-11-23T21:52:07.105000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-153704	date:	2019-07-22T00:00:00
db:	VULMON	id:	CVE-2019-2269	date:	2019-07-22T00:00:00
db:	BID	id:	108555	date:	2019-06-03T00:00:00
db:	JVNDB	id:	JVNDB-2019-006571	date:	2019-07-23T00:00:00
db:	CNNVD	id:	CNNVD-201906-085	date:	2019-07-23T00:00:00
db:	NVD	id:	CVE-2019-2269	date:	2024-11-21T04:40:35.050

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-153704	date:	2019-07-22T00:00:00
db:	VULMON	id:	CVE-2019-2269	date:	2019-07-22T00:00:00
db:	BID	id:	108555	date:	2019-06-03T00:00:00
db:	JVNDB	id:	JVNDB-2019-006571	date:	2019-07-23T00:00:00
db:	CNNVD	id:	CNNVD-201906-085	date:	2019-06-03T00:00:00
db:	NVD	id:	CVE-2019-2269	date:	2019-07-22T14:15:11.753