Vulnerabilities > CVE-2019-14122 - Improper Handling of Exceptional Conditions vulnerability in Qualcomm products

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

qualcomm

CWE-755

NVD

Published: 2020-04-16

Updated: 2020-04-21

Summary

Memory failure in SKB if it fails to to add the requested padding to the skb in low memory targets or targets with major memory fragmentation in Snapdragon Auto, Snapdragon Mobile in Saipan, SM8150, SM8250, SXR2130

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm Saipan Firmware - Qualcomm Sm8150 Firmware - Qualcomm Sm8250 Firmware - Qualcomm Sxr2130 Firmware -	4
Hardware	Qualcomm Qualcomm Saipan - Qualcomm Sm8150 - Qualcomm Sm8250 - Qualcomm Sxr2130 -	4

Common Weakness Enumeration (CWE)

CWE-755 - Improper Handling of Exceptional Conditions

References

https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin