Details of VAR-201912-1724

ID

VAR-201912-1724

CVE

CVE-2019-10595

TITLE

plural Snapdragon Vulnerability related to input validation in products

Trust: 0.8

sources: JVNDB: JVNDB-2019-013364

DESCRIPTION

Possible buffer overwrite in message handler due to lack of validation of tid value calculated from packets received from firmware in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8053, APQ8064, APQ8096AU, IPQ4019, IPQ8064, MDM9206, MDM9207C, MDM9607, MDM9615, MDM9640, MDM9650, MSM8909, MSM8909W, MSM8939, MSM8996AU, QCA4531, QCA6174A, QCA6574AU, QCA9377, QCA9379, QCA9558, QCA9880, QCA9886, QCA9980, SDA660, SDM630, SDM636, SDM660, SDX20, SDX24. plural Snapdragon The product contains an input validation vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm MDM9206 and so on are the products of American Qualcomm. MDM9206 is a central processing unit (CPU) product. MDM9607 is a central processing unit (CPU) product. MDM9640 is a central processing unit (CPU) product. An input validation error vulnerability exists in WLANs in several Qualcomm products, which can be exploited by an attacker to cause buffer coverage

Trust: 2.16

sources: NVD: CVE-2019-10595 // JVNDB: JVNDB-2019-013364 // CNVD: CNVD-2020-03576

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2020-03576

AFFECTED PRODUCTS

vendor:	qualcomm	model:	msm8909	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	apq8053	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm636	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca9379	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	apq8096au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	msm8996au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdx24	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	apq8009	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sda660	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca9880	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	apq8064	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9615	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9607	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	ipq8064	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca9377	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca9886	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca4531	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9650	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	ipq4019	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9206	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca9558	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6574au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm630	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6174a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm660	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9640	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	mdm9207c	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdx20	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	msm8939	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca9980	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	apq8009	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	apq8053	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	apq8064	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	apq8096au	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	ipq4019	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	ipq8064	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	mdm9206	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	mdm9207c	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	mdm9607	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	mdm9615	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	apq	scope:	eq	version:	8053	Trust: 0.6
vendor:	qualcomm	model:	apq	scope:	eq	version:	8009	Trust: 0.6
vendor:	qualcomm	model:	apq 8096au	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	apq	scope:	eq	version:	8064	Trust: 0.6
vendor:	qualcomm	model:	ipq	scope:	eq	version:	4019	Trust: 0.6
vendor:	qualcomm	model:	ipq	scope:	eq	version:	8064	Trust: 0.6
vendor:	qualcomm	model:	mdm	scope:	eq	version:	9607	Trust: 0.6
vendor:	qualcomm	model:	mdm	scope:	eq	version:	9650	Trust: 0.6
vendor:	qualcomm	model:	mdm	scope:	eq	version:	9206	Trust: 0.6
vendor:	qualcomm	model:	mdm	scope:	eq	version:	9640	Trust: 0.6
vendor:	qualcomm	model:	mdm	scope:	eq	version:	9615	Trust: 0.6
vendor:	qualcomm	model:	mdm 9207c	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	msm	scope:	eq	version:	8909	Trust: 0.6
vendor:	qualcomm	model:	msm 8996au	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	msm 8909w	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	msm	scope:	eq	version:	8939	Trust: 0.6
vendor:	qualcomm	model:	qca 6574au	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	qca 6174a	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	qca	scope:	eq	version:	9377	Trust: 0.6
vendor:	qualcomm	model:	qca	scope:	eq	version:	9379	Trust: 0.6
vendor:	qualcomm	model:	qca	scope:	eq	version:	9980	Trust: 0.6
vendor:	qualcomm	model:	qca	scope:	eq	version:	4531	Trust: 0.6
vendor:	qualcomm	model:	qca	scope:	eq	version:	9558	Trust: 0.6
vendor:	qualcomm	model:	qca	scope:	eq	version:	9880	Trust: 0.6
vendor:	qualcomm	model:	qca	scope:	eq	version:	9886	Trust: 0.6
vendor:	qualcomm	model:	sda	scope:	eq	version:	660	Trust: 0.6
vendor:	qualcomm	model:	sdm	scope:	eq	version:	630	Trust: 0.6
vendor:	qualcomm	model:	sdm	scope:	eq	version:	660	Trust: 0.6
vendor:	qualcomm	model:	sdm	scope:	eq	version:	636	Trust: 0.6
vendor:	qualcomm	model:	sdx	scope:	eq	version:	24	Trust: 0.6
vendor:	qualcomm	model:	sdx	scope:	eq	version:	20	Trust: 0.6

sources: CNVD: CNVD-2020-03576 // JVNDB: JVNDB-2019-013364 // NVD: CVE-2019-10595

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2019-10595
value:	HIGH
Trust: 1.0
NVD:	CVE-2019-10595
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2020-03576
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201912-091
value:	HIGH
Trust: 0.6

nvd@nist.gov:	CVE-2019-10595
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2020-03576
severity:	HIGH
baseScore:	7.2
vectorString:	AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

nvd@nist.gov:	CVE-2019-10595
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.8
impactScore:	5.9
version:	3.1
Trust: 1.0
NVD:	CVE-2019-10595
baseSeverity:	HIGH
baseScore:	7.8
vectorString:	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector:	LOCAL
attackComplexity:	LOW
privilegesRequired:	LOW
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: CNVD: CNVD-2020-03576 // JVNDB: JVNDB-2019-013364 // CNNVD: CNNVD-201912-091 // NVD: CVE-2019-10595

PROBLEMTYPE DATA

problemtype:	CWE-20	Trust: 1.8
problemtype:	CWE-787	Trust: 1.0

sources: JVNDB: JVNDB-2019-013364 // NVD: CVE-2019-10595

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201912-091

TYPE

input validation error

Trust: 0.6

sources: CNNVD: CNNVD-201912-091

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-013364

PATCH

title:	December 2019 Security Bulletin	url:	https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin	Trust: 0.8
title:	Patch for Multiple Qualcomm Product Input Validation Error Vulnerabilities (CNVD-2020-03576)	url:	https://www.cnvd.org.cn/patchInfo/show/198877	Trust: 0.6
title:	Multiple Qualcomm Product input verification error vulnerability fixes	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=105627	Trust: 0.6

sources: CNVD: CNVD-2020-03576 // JVNDB: JVNDB-2019-013364 // CNNVD: CNNVD-201912-091

EXTERNAL IDS

db:	NVD	id:	CVE-2019-10595	Trust: 3.0
db:	JVNDB	id:	JVNDB-2019-013364	Trust: 0.8
db:	CNVD	id:	CNVD-2020-03576	Trust: 0.6
db:	CNNVD	id:	CNNVD-201912-091	Trust: 0.6

sources: CNVD: CNVD-2020-03576 // JVNDB: JVNDB-2019-013364 // CNNVD: CNNVD-201912-091 // NVD: CVE-2019-10595

REFERENCES

url:	https://nvd.nist.gov/vuln/detail/cve-2019-10595	Trust: 2.0
url:	https://www.qualcomm.com/company/product-security/bulletins/december-2019-bulletin	Trust: 1.6
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-10595	Trust: 0.8
url:	https://source.android.google.cn/security/bulletin/2019-12-01.html	Trust: 0.6
url:	https://vigilance.fr/vulnerability/google-android-pixel-multiple-vulnerabilities-of-december-2019-31041	Trust: 0.6

sources: CNVD: CNVD-2020-03576 // JVNDB: JVNDB-2019-013364 // CNNVD: CNNVD-201912-091 // NVD: CVE-2019-10595

SOURCES

db:	CNVD	id:	CNVD-2020-03576
db:	JVNDB	id:	JVNDB-2019-013364
db:	CNNVD	id:	CNNVD-201912-091
db:	NVD	id:	CVE-2019-10595

LAST UPDATE DATE

2024-11-23T22:55:19.461000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2020-03576	date:	2020-02-04T00:00:00
db:	JVNDB	id:	JVNDB-2019-013364	date:	2019-12-27T00:00:00
db:	CNNVD	id:	CNNVD-201912-091	date:	2020-06-04T00:00:00
db:	NVD	id:	CVE-2019-10595	date:	2024-11-21T04:19:32.327

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2020-03576	date:	2020-02-04T00:00:00
db:	JVNDB	id:	JVNDB-2019-013364	date:	2019-12-27T00:00:00
db:	CNNVD	id:	CNNVD-201912-091	date:	2019-12-02T00:00:00
db:	NVD	id:	CVE-2019-10595	date:	2019-12-18T06:15:12.377