Vulnerabilities > CVE-2019-14124 - Access of Uninitialized Pointer vulnerability in Qualcomm products

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

qualcomm

CWE-824

NVD

Published: 2020-07-30

Updated: 2020-07-30

Summary

Memory failure in content protection module due to not having pointer within the scope in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in Kamorta, QCS404, Rennell, SC7180, SDX55, SM6150, SM7150, SM8250, SXR2130

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm Kamorta Firmware - Qualcomm Qcs404 Firmware - Qualcomm Rennell Firmware - Qualcomm Sc7180 Firmware - Qualcomm Sdx55 Firmware - Qualcomm Sm6150 Firmware - Qualcomm Sm7150 Firmware - Qualcomm Sm8250 Firmware - Qualcomm Sxr2130 Firmware -	9
Hardware	Qualcomm Qualcomm Kamorta - Qualcomm Qcs404 - Qualcomm Rennell - Qualcomm Sc7180 - Qualcomm Sdx55 - Qualcomm Sm6150 - Qualcomm Sm7150 - Qualcomm Sm8250 - Qualcomm Sxr2130 -	9

Common Weakness Enumeration (CWE)

CWE-824 - Access of Uninitialized Pointer

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References