Vulnerability Details CVE-2019-14041
During listener modified response processing, a buffer overrun occurs due to lack of buffer size verification when updating message buffer with physical address information in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8917, MSM8953, MSM8996AU, Nicobar, QCM2150, QCS405, QCS605, QM215, Rennell, SA6155P, Saipan, SC8180X, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM670, SDM710, SDM845, SDX20, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.2%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 4.6
References
Products affected by CVE-2019-14041
-
cpe:2.3:h:qualcomm:apq8009:-
-
cpe:2.3:h:qualcomm:apq8017:-
-
cpe:2.3:h:qualcomm:apq8053:-
-
cpe:2.3:h:qualcomm:apq8096au:-
-
cpe:2.3:h:qualcomm:apq8098:-
-
cpe:2.3:h:qualcomm:md9607:-
-
cpe:2.3:h:qualcomm:mdm9206:-
-
cpe:2.3:h:qualcomm:mdm9207c:-
-
cpe:2.3:h:qualcomm:mdm9640:-
-
cpe:2.3:h:qualcomm:mdm9650:-
-
cpe:2.3:h:qualcomm:msm8905:-
-
cpe:2.3:h:qualcomm:msm8909w:-
-
cpe:2.3:h:qualcomm:msm8917:-
-
cpe:2.3:h:qualcomm:msm8953:-
-
cpe:2.3:h:qualcomm:msm8996au:-
-
cpe:2.3:h:qualcomm:nicobar:-
-
cpe:2.3:h:qualcomm:qcm2150:-
-
cpe:2.3:h:qualcomm:qcs405:-
-
cpe:2.3:h:qualcomm:qcs605:-
-
cpe:2.3:h:qualcomm:qm215:-
-
cpe:2.3:h:qualcomm:rennell:-
-
cpe:2.3:h:qualcomm:sa6155p:-
-
cpe:2.3:h:qualcomm:saipan:-
-
cpe:2.3:h:qualcomm:sc8180x:-
-
cpe:2.3:h:qualcomm:sda660:-
-
cpe:2.3:h:qualcomm:sda845:-
-
cpe:2.3:h:qualcomm:sdm429:-
-
cpe:2.3:h:qualcomm:sdm429w:-
-
cpe:2.3:h:qualcomm:sdm439:-
-
cpe:2.3:h:qualcomm:sdm450:-
-
cpe:2.3:h:qualcomm:sdm632:-
-
cpe:2.3:h:qualcomm:sdm670:-
-
cpe:2.3:h:qualcomm:sdm710:-
-
cpe:2.3:h:qualcomm:sdm845:-
-
cpe:2.3:h:qualcomm:sdx20:-
-
cpe:2.3:h:qualcomm:sdx24:-
-
cpe:2.3:h:qualcomm:sdx55:-
-
cpe:2.3:h:qualcomm:sm6150:-
-
cpe:2.3:h:qualcomm:sm7150:-
-
cpe:2.3:h:qualcomm:sm8150:-
-
cpe:2.3:h:qualcomm:sm8250:-
-
cpe:2.3:h:qualcomm:sxr1130:-
-
cpe:2.3:h:qualcomm:sxr2130:-
-
cpe:2.3:o:qualcomm:apq8009_firmware:-
-
cpe:2.3:o:qualcomm:apq8017_firmware:-
-
cpe:2.3:o:qualcomm:apq8053_firmware:-
-
cpe:2.3:o:qualcomm:apq8096au_firmware:-
-
cpe:2.3:o:qualcomm:apq8098_firmware:-
-
cpe:2.3:o:qualcomm:md9607_firmware:-
-
cpe:2.3:o:qualcomm:mdm9206_firmware:-
-
cpe:2.3:o:qualcomm:mdm9207c_firmware:-
-
cpe:2.3:o:qualcomm:mdm9640_firmware:-
-
cpe:2.3:o:qualcomm:mdm9650_firmware:-
-
cpe:2.3:o:qualcomm:msm8905_firmware:-
-
cpe:2.3:o:qualcomm:msm8909w_firmware:-
-
cpe:2.3:o:qualcomm:msm8917_firmware:-
-
cpe:2.3:o:qualcomm:msm8953_firmware:-
-
cpe:2.3:o:qualcomm:msm8996au_firmware:-
-
cpe:2.3:o:qualcomm:nicobar_firmware:-
-
cpe:2.3:o:qualcomm:qcm2150_firmware:-
-
cpe:2.3:o:qualcomm:qcs405_firmware:-
-
cpe:2.3:o:qualcomm:qcs605_firmware:-
-
cpe:2.3:o:qualcomm:qm215_firmware:-
-
cpe:2.3:o:qualcomm:rennell_firmware:-
-
cpe:2.3:o:qualcomm:sa6155p_firmware:-
-
cpe:2.3:o:qualcomm:saipan_firmware:-
-
cpe:2.3:o:qualcomm:sc8180x_firmware:-
-
cpe:2.3:o:qualcomm:sda660_firmware:-
-
cpe:2.3:o:qualcomm:sda845_firmware:-
-
cpe:2.3:o:qualcomm:sdm429_firmware:-
-
cpe:2.3:o:qualcomm:sdm429w_firmware:-
-
cpe:2.3:o:qualcomm:sdm439_firmware:-
-
cpe:2.3:o:qualcomm:sdm450_firmware:-
-
cpe:2.3:o:qualcomm:sdm632_firmware:-
-
cpe:2.3:o:qualcomm:sdm670_firmware:-
-
cpe:2.3:o:qualcomm:sdm710_firmware:-
-
cpe:2.3:o:qualcomm:sdm845_firmware:-
-
cpe:2.3:o:qualcomm:sdx20_firmware:-
-
cpe:2.3:o:qualcomm:sdx24_firmware:-
-
cpe:2.3:o:qualcomm:sdx55_firmware:-
-
cpe:2.3:o:qualcomm:sm6150_firmware:-
-
cpe:2.3:o:qualcomm:sm7150_firmware:-
-
cpe:2.3:o:qualcomm:sm8150_firmware:-
-
cpe:2.3:o:qualcomm:sm8250_firmware:-
-
cpe:2.3:o:qualcomm:sxr1130_firmware:-
-
cpe:2.3:o:qualcomm:sxr2130_firmware:-