Details of VAR-202003-1287

ID

VAR-202003-1287

CVE

CVE-2019-10550

TITLE

plural Snapdragon Out-of-bounds read vulnerabilities in the product

Trust: 0.8

sources: JVNDB: JVNDB-2019-014818

DESCRIPTION

Buffer Over-read when UE is trying to process the message received form the network without zero termination in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9206, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, Nicobar, QCM2150, QCS605, QM215, Rennell, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130. plural Snapdragon The product contains an out-of-bounds read vulnerability.Information is obtained and service operation is interrupted (DoS) It may be put into a state. Qualcomm MDM9206, etc. are all products of Qualcomm. MDM9206 is a central processing unit (CPU) product. SDX24 is a modem. QCS605 is a central processing unit (CPU) product. There are buffer overflow vulnerabilities in the Data Modem of many Qualcomm products, and attackers can use the specially crafted requests to exploit the vulnerability to cause denial of service or obtain sensitive information

Trust: 2.16

sources: NVD: CVE-2019-10550 // JVNDB: JVNDB-2019-014818 // CNVD: CNVD-2020-20197

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2020-20197

AFFECTED PRODUCTS

vendor:	qualcomm	model:	mdm9206	scope:	eq	version:	-	Trust: 2.2
vendor:	qualcomm	model:	mdm9650	scope:	eq	version:	-	Trust: 2.2
vendor:	qualcomm	model:	mdm9640	scope:	eq	version:	-	Trust: 2.2
vendor:	qualcomm	model:	mdm9607	scope:	eq	version:	-	Trust: 2.2
vendor:	qualcomm	model:	msm8905	scope:	eq	version:	-	Trust: 2.2
vendor:	qualcomm	model:	mdm9206	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	mdm9607	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	msm8909w	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	mdm9650	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	mdm9640	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	msm8917	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	msm8920	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	msm8937	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	msm8905	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	msm8909	scope:	-	version:	-	Trust: 1.4
vendor:	qualcomm	model:	msm8909	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	msm8953	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sc8180x	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	msm8917	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm429	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdx24	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sda660	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm450	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm710	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm660	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm845	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	msm8940	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sxr1130	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcm2150	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm8150	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdx55	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sda845	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm636	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	msm8996au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm7150	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs605	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sm6150	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm632	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm429w	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm670	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm630	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm850	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qm215	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm439	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	nicobar	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	msm8909w	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	msm8920	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdx20	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	rennell	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	msm8937	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdx20	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdm429	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdm439	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdm630	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdm632	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdm636	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdm660	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	msm8996au	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sda845	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdx24	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sxr1130	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	qcs605	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sda660	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	nicobar	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sm7150	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdm670	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sm8150	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdm429w	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	msm8940	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	msm8953	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sc8180x	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdm450	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdx55	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	qm215	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	rennell	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	qcm2150	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdm710	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdm845	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sdm850	scope:	-	version:	-	Trust: 0.6
vendor:	qualcomm	model:	sm6150	scope:	-	version:	-	Trust: 0.6

sources: CNVD: CNVD-2020-20197 // JVNDB: JVNDB-2019-014818 // CNNVD: CNNVD-202003-137 // NVD: CVE-2019-10550

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2019-10550
value:	CRITICAL
Trust: 1.0
NVD:	JVNDB-2019-014818
value:	CRITICAL
Trust: 0.8
CNVD:	CNVD-2020-20197
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-202003-137
value:	CRITICAL
Trust: 0.6

nvd@nist.gov:	CVE-2019-10550
severity:	HIGH
baseScore:	9.4
vectorString:	AV:N/AC:L/AU:N/C:C/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	9.2
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
NVD:	JVNDB-2019-014818
severity:	HIGH
baseScore:	9.4
vectorString:	AV:N/AC:L/AU:N/C:C/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8
CNVD:	CNVD-2020-20197
severity:	HIGH
baseScore:	9.4
vectorString:	AV:N/AC:L/AU:N/C:C/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	9.2
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

nvd@nist.gov:	CVE-2019-10550
baseSeverity:	CRITICAL
baseScore:	9.1
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	5.2
version:	3.1
Trust: 1.0
NVD:	JVNDB-2019-014818
baseSeverity:	CRITICAL
baseScore:	9.1
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: CNVD: CNVD-2020-20197 // JVNDB: JVNDB-2019-014818 // CNNVD: CNNVD-202003-137 // NVD: CVE-2019-10550

PROBLEMTYPE DATA

problemtype:

CWE-125

Trust: 1.8

sources: JVNDB: JVNDB-2019-014818 // NVD: CVE-2019-10550

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202003-137

TYPE

buffer error

Trust: 0.6

sources: CNNVD: CNNVD-202003-137

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-014818

PATCH

title:	March 2020 Security Bulletin	url:	https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin	Trust: 0.8
title:	Patch for Multiple Qualcomm product buffer overflow vulnerabilities (CNVD-2020-20197)	url:	https://www.cnvd.org.cn/patchInfo/show/211593	Trust: 0.6
title:	Multiple Qualcomm Product Buffer Error Vulnerability Fix	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=111596	Trust: 0.6

sources: CNVD: CNVD-2020-20197 // JVNDB: JVNDB-2019-014818 // CNNVD: CNNVD-202003-137

EXTERNAL IDS

db:	NVD	id:	CVE-2019-10550	Trust: 3.0
db:	JVNDB	id:	JVNDB-2019-014818	Trust: 0.8
db:	CNVD	id:	CNVD-2020-20197	Trust: 0.6
db:	CNNVD	id:	CNNVD-202003-137	Trust: 0.6

sources: CNVD: CNVD-2020-20197 // JVNDB: JVNDB-2019-014818 // CNNVD: CNNVD-202003-137 // NVD: CVE-2019-10550

REFERENCES

url:	https://nvd.nist.gov/vuln/detail/cve-2019-10550	Trust: 2.0
url:	https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin	Trust: 1.6
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-10550	Trust: 0.8
url:	https://vigilance.fr/vulnerability/google-android-pixel-multiple-vulnerabilities-of-march-2020-31720	Trust: 0.6

sources: CNVD: CNVD-2020-20197 // JVNDB: JVNDB-2019-014818 // CNNVD: CNNVD-202003-137 // NVD: CVE-2019-10550

SOURCES

db:	CNVD	id:	CNVD-2020-20197
db:	JVNDB	id:	JVNDB-2019-014818
db:	CNNVD	id:	CNNVD-202003-137
db:	NVD	id:	CVE-2019-10550

LAST UPDATE DATE

2024-11-23T22:33:33.557000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2020-20197	date:	2020-03-30T00:00:00
db:	JVNDB	id:	JVNDB-2019-014818	date:	2020-03-18T00:00:00
db:	CNNVD	id:	CNNVD-202003-137	date:	2020-03-13T00:00:00
db:	NVD	id:	CVE-2019-10550	date:	2024-11-21T04:19:25.803

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2020-20197	date:	2020-03-30T00:00:00
db:	JVNDB	id:	JVNDB-2019-014818	date:	2020-03-18T00:00:00
db:	CNNVD	id:	CNNVD-202003-137	date:	2020-03-03T00:00:00
db:	NVD	id:	CVE-2019-10550	date:	2020-03-05T09:15:15.530