Vulnerabilities > CVE-2019-10545 - NULL Pointer Dereference vulnerability in Qualcomm products

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

qualcomm

CWE-476

NVD

Published: 2019-12-12

Updated: 2019-12-13

Summary

Null pointer dereference issue in kernel due to missing check related to LLC support in GPU in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Voice & Music in QCS605, SDM670, SDM710, SM6150, SM7150, SM8150

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm Qcs605 Firmware - Qualcomm Sdm670 Firmware - Qualcomm Sdm710 Firmware - Qualcomm Sm6150 Firmware - Qualcomm Sm7150 Firmware - Qualcomm Sm8150 Firmware -	6
Hardware	Qualcomm Qualcomm Qcs605 - Qualcomm Sdm670 - Qualcomm Sdm710 - Qualcomm Sm6150 - Qualcomm Sm7150 - Qualcomm Sm8150 -	6

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

References

https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin