Vulnerability Details CVE-2019-10616
Possibility of null pointer access if the SPDM commands are executed in the non-standard way in TZ. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8016, MDM9150, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8909W, MSM8998, SA6155P, SDX24
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 11.5%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 4.9
References
Products affected by CVE-2019-10616
-
cpe:2.3:h:qualcomm:apq8009:-
-
cpe:2.3:h:qualcomm:apq8016:-
-
cpe:2.3:h:qualcomm:mdm9150:-
-
cpe:2.3:h:qualcomm:mdm9206:-
-
cpe:2.3:h:qualcomm:mdm9607:-
-
cpe:2.3:h:qualcomm:mdm9650:-
-
cpe:2.3:h:qualcomm:msm8905:-
-
cpe:2.3:h:qualcomm:msm8909:-
-
cpe:2.3:h:qualcomm:msm8909w:-
-
cpe:2.3:h:qualcomm:msm8998:-
-
cpe:2.3:h:qualcomm:sa6155p:-
-
cpe:2.3:h:qualcomm:sdx24:-
-
cpe:2.3:o:qualcomm:apq8009_firmware:-
-
cpe:2.3:o:qualcomm:apq8016_firmware:-
-
cpe:2.3:o:qualcomm:mdm9150_firmware:-
-
cpe:2.3:o:qualcomm:mdm9206_firmware:-
-
cpe:2.3:o:qualcomm:mdm9607_firmware:-
-
cpe:2.3:o:qualcomm:mdm9650_firmware:-
-
cpe:2.3:o:qualcomm:msm8905_firmware:-
-
cpe:2.3:o:qualcomm:msm8909_firmware:-
-
cpe:2.3:o:qualcomm:msm8909w_firmware:-
-
cpe:2.3:o:qualcomm:msm8998_firmware:-
-
cpe:2.3:o:qualcomm:sa6155p_firmware:-
-
cpe:2.3:o:qualcomm:sdx24_firmware:-