CVE-2019-14072 - NVD | ByteOS Network

NVD Vulnerability Details :

CVE-2019-14072

Analyzed

More Info Official Page

Source-product-security@qualcomm.com

Published At-05 Mar, 2020 | 09:15

Updated At-21 Jul, 2021 | 11:39

Unhandled paging request is observed due to dereferencing an already freed object because of race condition between sparse free and sparse bind ioctls which access the same physical entry in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8096AU, APQ8098, MDM9607, MSM8909W, MSM8939, MSM8953, MSM8996AU, Nicobar, QCS405, QCS605, Rennell, SA6155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM450, SDM632, SDM670, SDM710, SDM845, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	7.0	HIGH	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary	2.0	6.9	MEDIUM	AV:L/AC:M/Au:N/C:C/I:C/A:C

CPE Matches

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8009_firmware>>-

cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8096au_firmware>>-

cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>apq8098_firmware>>-

cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>mdm9607_firmware>>-

cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8909w_firmware>>-

cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8939:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8939_firmware>>-

cpe:2.3:o:qualcomm:msm8939_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8953:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8953_firmware>>-

cpe:2.3:o:qualcomm:msm8953_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>msm8996au_firmware>>-

cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>nicobar_firmware>>-

cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>qcs405_firmware>>-

cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>qcs605_firmware>>-

cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>rennell_firmware>>-

cpe:2.3:o:qualcomm:rennell_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:rennell:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sa6155p_firmware>>-

cpe:2.3:o:qualcomm:sa6155p_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sa6155p:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>saipan_firmware>>-

cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sc8180x_firmware>>-

cpe:2.3:o:qualcomm:sc8180x_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sc8180x:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sda660_firmware>>-

cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sda845_firmware>>-

cpe:2.3:o:qualcomm:sda845_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sda845:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sdm429_firmware>>-

cpe:2.3:o:qualcomm:sdm429_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sdm429:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sdm429w_firmware>>-

cpe:2.3:o:qualcomm:sdm429w_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sdm429w:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sdm450_firmware>>-

cpe:2.3:o:qualcomm:sdm450_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sdm450:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sdm632_firmware>>-

cpe:2.3:o:qualcomm:sdm632_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sdm632:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sdm670_firmware>>-

cpe:2.3:o:qualcomm:sdm670_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sdm670:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sdm710_firmware>>-

cpe:2.3:o:qualcomm:sdm710_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sdm710:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sdm845_firmware>>-

cpe:2.3:o:qualcomm:sdm845_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

cpe:2.3:h:qualcomm:sdm845:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sdx24_firmware>>-

cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*

Qualcomm Technologies, Inc.

>>sdx24>>-

cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-362	Primary	nvd@nist.gov
CWE-416	Primary	nvd@nist.gov

References

Hyperlink	Source	Resource
https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin	product-security@qualcomm.com	Vendor Advisory