CVE-2019-2305
EUVD-2019-1194725.07.2019, 17:15
Out of bound access when reason code is extracted from frame data without validating the frame length in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6574AU, QCA9377, QCA9379, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM630, SDM660, SDX20, SDX24Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| qualcomm | mdm9150_firmware | - |
| qualcomm | mdm9206_firmware | - |
| qualcomm | mdm9607_firmware | - |
| qualcomm | mdm9640_firmware | - |
| qualcomm | mdm9650_firmware | - |
| qualcomm | msm8996au_firmware | - |
| qualcomm | qca6174a_firmware | - |
| qualcomm | qca6574au_firmware | - |
| qualcomm | qca9377_firmware | - |
| qualcomm | qca9379_firmware | - |
| qualcomm | qcs405_firmware | - |
| qualcomm | qcs605_firmware | - |
| qualcomm | sd_425_firmware | - |
| qualcomm | sd_427_firmware | - |
| qualcomm | sd_430_firmware | - |
| qualcomm | sd_435_firmware | - |
| qualcomm | sd_450_firmware | - |
| qualcomm | sd_625_firmware | - |
| qualcomm | sd_636_firmware | - |
| qualcomm | sd_665_firmware | - |
| qualcomm | sd_675_firmware | - |
| qualcomm | sd_712_firmware | - |
| qualcomm | sd_710_firmware | - |
| qualcomm | sd_670_firmware | - |
| qualcomm | sd_730_firmware | - |
| qualcomm | sd_820_firmware | - |
| qualcomm | sd_820a_firmware | - |
| qualcomm | sd_835_firmware | - |
| qualcomm | sd_845_firmware | - |
| qualcomm | sd_850_firmware | - |
| qualcomm | sd_855_firmware | - |
| qualcomm | sda660_firmware | - |
| qualcomm | sdm630_firmware | - |
| qualcomm | sdm660_firmware | - |
| qualcomm | sdx20_firmware | - |
| qualcomm | sdx24_firmware | - |
𝑥
= Vulnerable software versions
Common Weakness Enumeration