CVE-2019-2338
12.12.2019, 09:15
Crafted image that has a valid signature from a non-QC entity can be loaded which can read/write memory that belongs to the secure world in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, MSM8998, QCS404, QCS605, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SXR1130, SXR2130Enginsight
| Vendor | Product | Version |
|---|---|---|
| qualcomm | mdm9205_firmware | - |
| qualcomm | msm8998_firmware | - |
| qualcomm | qcs404_firmware | - |
| qualcomm | qcs605_firmware | - |
| qualcomm | sda660_firmware | - |
| qualcomm | sda845_firmware | - |
| qualcomm | sdm630_firmware | - |
| qualcomm | sdm636_firmware | - |
| qualcomm | sdm660_firmware | - |
| qualcomm | sdm670_firmware | - |
| qualcomm | sdm710_firmware | - |
| qualcomm | sdm845_firmware | - |
| qualcomm | sdm850_firmware | - |
| qualcomm | sdx24_firmware | - |
| qualcomm | sm6150_firmware | - |
| qualcomm | sm7150_firmware | - |
| qualcomm | sm8150_firmware | - |
| qualcomm | sxr1130_firmware | - |
| qualcomm | sxr2130_firmware | - |
𝑥
= Vulnerable software versions