Vulnerabilities > CVE-2019-14132 - Out-of-bounds Write vulnerability in Qualcomm Qcs605 Firmware, Sa6155P Firmware and Sm8150 Firmware

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

qualcomm

CWE-787

critical

NVD

Published: 2020-04-16

Updated: 2020-04-21

Summary

Buffer over-write when this 0-byte buffer is typecasted to some other structure and hence memory corruption in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile in QCS605, SA6155P, SM8150

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm Qcs605 Firmware - Qualcomm Sa6155P Firmware - Qualcomm Sm8150 Firmware -	3
Hardware	Qualcomm Qualcomm Qcs605 - Qualcomm Sa6155P - Qualcomm Sm8150 -	3

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin