Unrated severityNVD Advisory· Published Sep 8, 2020· Updated Aug 5, 2024
CVE-2019-14025
CVE-2019-14025
Description
u'When a new session is created, Object is returned that contains TZ addresses and it get passed to HLOS as an handle to refer to a particular session and can cause TZ to jump to a invalid address' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
Affected products
4- Qualcomm, Inc./Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networkingv5Range: Kamorta, QCS404, QCS610, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130
Patches
Vulnerability mechanics
References
1- www.qualcomm.com/company/product-security/bulletins/august-2020-bulletinmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.