CVE-2019-14018 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2019-14018

Analyzed

More Info Official Page

Source-product-security@qualcomm.com

Published At-16 Apr, 2020 | 11:15

Updated At-22 Apr, 2020 | 17:11

Possible out of bound array access as there is no check on carrier index passed in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053, APQ8096, APQ8096AU, APQ8098, MDM9150, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8905, MSM8909, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996AU, MSM8998, Nicobar, QCM2150, QCS605, QM215, Rennell, SC7180, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM630, SDM632, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SXR1130

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary	2.0	7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C

CPE Matches

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:apq8053:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8053_firmware>>-

cpe:2.3:o:qualcomm:apq8053_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:apq8096:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8096_firmware>>-

cpe:2.3:o:qualcomm:apq8096_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8096au_firmware>>-

cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8098_firmware>>-

cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9150_firmware>>-

cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9206_firmware>>-

cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9607_firmware>>-

cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9625:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9625_firmware>>-

cpe:2.3:o:qualcomm:mdm9625_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9635m_firmware>>-

cpe:2.3:o:qualcomm:mdm9635m_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9635m:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9640_firmware>>-

cpe:2.3:o:qualcomm:mdm9640_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9640:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9645_firmware>>-

cpe:2.3:o:qualcomm:mdm9645_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9645:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9650_firmware>>-

cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9655_firmware>>-

cpe:2.3:o:qualcomm:mdm9655_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9655:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8905_firmware>>-

cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8909_firmware>>-

cpe:2.3:o:qualcomm:msm8909_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8909:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8909w_firmware>>-

cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8917_firmware>>-

cpe:2.3:o:qualcomm:msm8917_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8917:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8920_firmware>>-

cpe:2.3:o:qualcomm:msm8920_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8920:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8937_firmware>>-

cpe:2.3:o:qualcomm:msm8937_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8937:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8940_firmware>>-

cpe:2.3:o:qualcomm:msm8940_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8940:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8953_firmware>>-

cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8996au_firmware>>-

cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8998_firmware>>-

cpe:2.3:o:qualcomm:msm8998_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8998:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>nicobar_firmware>>-

cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>qcm2150_firmware>>-

cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-129	Primary	nvd@nist.gov

References

Hyperlink	Source	Resource
https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin	product-security@qualcomm.com	Vendor Advisory