CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-10608

Information disclosure issue occurs as there is no binding between the secure keypad session and the secure display session that allows user to take control of the REE to stop the secure keypad session and read the keypad input. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, MSM8905, MSM8909

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 13.2%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 2.1

References

Products affected by CVE-2019-10608

Qualcomm » Apq8009 » Version: N/A

cpe:2.3:h:qualcomm:apq8009:-
Qualcomm » Msm8905 » Version: N/A

cpe:2.3:h:qualcomm:msm8905:-
Qualcomm » Msm8909 » Version: N/A

cpe:2.3:h:qualcomm:msm8909:-
Qualcomm » Apq8009 Firmware » Version: N/A

cpe:2.3:o:qualcomm:apq8009_firmware:-
Qualcomm » Msm8905 Firmware » Version: N/A

cpe:2.3:o:qualcomm:msm8905_firmware:-
Qualcomm » Msm8909 Firmware » Version: N/A

cpe:2.3:o:qualcomm:msm8909_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-10608

Products

Pricing

Contact Us