CVE-2019-14092

EUVD-2019-5346
System Services exports services without permission protect and can lead to information exposure in Snapdragon Industrial IOT, Snapdragon Mobile in MDM9206, MDM9207C, MDM9607, Rennell, Saipan, SM8150, SM8250, SXR2130
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 13%
Affected Products (NVD)
VendorProductVersion
qualcommmdm9206_firmware
-
qualcommmdm9207c_firmware
-
qualcommmdm9607_firmware
-
qualcommrennell_firmware
-
qualcommsaipan_firmware
-
qualcommsm8150_firmware
-
qualcommsm8250_firmware
-
qualcommsxr2130_firmware
-
𝑥
= Vulnerable software versions
References
https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletin
https://www.qualcomm.com/company/product-security/bulletins/june-2020-security-bulletin
https://www.qualcomm.com/company/product-security/bulletins/june-2020-bulletin