CVE-2019-10620

Kernel memory error in debug module due to improper check of user data length before copying into memory in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8096AU, APQ8098, MSM8996AU, QCN7605, SDM439, SDX24, SM8150

CVSS v3 7.8 HIGH
CVSS v2.0 4.6 MEDIUM

7.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

4.6^/10

CVSS v2.0 : MEDIUM

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin	Patch Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*

cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*

cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*

cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*

cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*

cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*

cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2020-04-16 11:15

Updated : 2020-04-22 15:22

NVD link : CVE-2019-10620

Mitre link : CVE-2019-10620

CVE.ORG link : CVE-2019-10620

JSON object : View

Products Affected

qualcomm

apq8096au_firmware
sdm439_firmware
sm8150
sm8150_firmware
sdm439
qcn7605_firmware
apq8096au
qcn7605
sdx24_firmware
apq8098_firmware
sdx24
msm8996au_firmware
apq8098
msm8996au

CWE

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

{"id": "CVE-2019-10620", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2020-04-16T11:15:13.870", "references": [{"url": "https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin", "tags": ["Patch", "Vendor Advisory"], "source": "product-security@qualcomm.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-120"}]}], "descriptions": [{"lang": "en", "value": "Kernel memory error in debug module due to improper check of user data length before copying into memory in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8096AU, APQ8098, MSM8996AU, QCN7605, SDM439, SDX24, SM8150"}, {"lang": "es", "value": "Un error en la memoria del kernel en el m\u00f3dulo de depuraci\u00f3n debido a una comprobaci\u00f3n inapropiada de la longitud de datos de usuario antes de copiarlos en la memoria en los productos Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile en versiones APQ8096AU, APQ8098, MSM8996AU, QCN7605, SDM439, SDX24, SM8150."}], "lastModified": "2020-04-22T15:22:55.260", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:apq8096au_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DD17C0A3-A200-4659-968B-B2DA03CB683F"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:apq8096au:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B1F31FFB-982A-4308-82F8-C2480DABDED8"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:apq8098:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "678A68E0-81D8-4562-826E-03872184256C"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:apq8098_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "13A7328A-89FB-4E9C-B4E3-D8097443FB7A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "95CB08EC-AE12-4A54-AA3C-998F01FC8763"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8CA1E7B0-782B-4757-B118-802943798984"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qcn7605:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CD28C87D-1D28-4C84-BFE4-56EE3BF2C6B0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qcn7605_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9C9D1966-30F0-414D-BE75-0A14B12A1457"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:sdm439:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C0B56360-7AC3-410A-B7F8-1BE8514B3781"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:sdm439_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "84289E6D-DA2A-4D04-9DDA-E8C46DDDD056"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "96DD6B48-2554-464D-A061-DBB4B8E00758"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F9BE864E-7B1E-44D5-A10A-60078095DE33"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:sm8150:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "19B9AE36-87A9-4EE7-87C8-CCA2DCF51039"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:sm8150_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9286B1E8-E39F-4DAA-8969-311CA2A0A8AA"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "product-security@qualcomm.com"}