Unrated severityNVD Advisory· Published Apr 16, 2020· Updated Aug 4, 2024
CVE-2019-10624
CVE-2019-10624
Description
While handling the vendor command there is an integer truncation issue that could yield a buffer overflow due to int data type copied to u8 data type in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8096AU, MSM8996AU, QCA6574AU, QCN7605, Rennell, SC8180X, SDM710, SDX55, SM7150, SM8150, SM8250, SXR2130
Affected products
4- Qualcomm, Inc./Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Industrial IOT, Snapdragon Mobilev5Range: APQ8096AU, MSM8996AU, QCA6574AU, QCN7605, Rennell, SC8180X, SDM710, SDX55, SM7150, SM8150, SM8250, SXR2130
Patches
Vulnerability mechanics
References
1- www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.