Vulnerabilities > CVE-2019-14132 - Out-of-bounds Write vulnerability in Qualcomm Qcs605 Firmware, Sa6155P Firmware and Sm8150 Firmware

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

qualcomm

CWE-787

critical

NVD

Published: 2020-04-16

Updated: 2020-04-21

Summary

Buffer over-write when this 0-byte buffer is typecasted to some other structure and hence memory corruption in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile in QCS605, SA6155P, SM8150

Vulnerable Configurations

Part	Description	Count
OS	Qualcomm Qualcomm Qcs605 Firmware - Qualcomm Sa6155P Firmware - Qualcomm Sm8150 Firmware -	3
Hardware	Qualcomm Qualcomm Qcs605 - Qualcomm Sa6155P - Qualcomm Sm8150 -	3

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin