Vulnerability CVE-2019-2240


Published: 2019-07-25

Description:
While sending the rendered surface content to the screen, Error handling is not properly checked results in an unpredictable behaviour in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9880, QCA9886, QCA9980, QCN5502, QCS404, QCS605, SD 210/SD 212/SD 205, SD 425, SD 600, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130

Type:

CWE-388

(Error Handling)

Vendor: Qualcomm
Product: Sd 820 firmware 
Product: Mdm9607 firmware 
Product: Sd 670 firmware 
Product: Ipq4019 firmware 
Product: Sd 212 firmware 
Product: Qcn5502 firmware 
Product: Sxr1130 firmware 
Product: Qca9379 firmware 
Product: Sda660 firmware 
Product: Qca6574au firmware 
Product: Sd 835 firmware 
Product: Mdm9650 firmware 
Product: Sd 710 firmware 
Product: Ipq8074 firmware 
Product: Sd 600 firmware 
Product: Qcs605 firmware 
Product: Qca9880 firmware 
Product: Sdm660 firmware 
Product: Qca6584au firmware 
Product: Sd 850 firmware 
Product: Qca6174a firmware 
Product: Sd 730 firmware 
Product: Mdm9206 firmware 
Product: Sd 636 firmware 
Product: Sd 210 firmware 
Product: Qca9980 firmware 
Product: Sdx24 firmware 
Product: Qca9377 firmware 
Product: Sd 8cx firmware 
Product: Qca6574 firmware 
Product: Sd 820a firmware 
Product: Mdm9640 firmware 
Product: Sd 675 firmware 
Product: Ipq8064 firmware 
Product: Sd 425 firmware 
Product: Qcs404 firmware 
Product: Qca9531 firmware 
Product: Sdm630 firmware 
Product: Qca6584 firmware 
Product: Sd 845 firmware 
Product: Msm8996au firmware 
Product: Sd 712 firmware 
Product: Mdm9150 firmware 
Product: Sd 625 firmware 
Product: Sd 205 firmware 
Product: Qca9886 firmware 
Product: Sdx20 firmware 
Product: Qca8081 firmware 
Product: Sd 855 firmware 
Product: Qca6564 firmware 

CVSS2 => (AV:L/AC:L/Au:N/C:N/I:P/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
2.1/10
2.9/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
Partial
None

 References:
https://www.qualcomm.com/company/product-security/bulletins

Related CVE
CVE-2019-2341
Buffer overflow when the audio buffer size provided by user is larger than the maximum allowable audio buffer size. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdra...
CVE-2019-2333
Buffer overflow due to improper validation of buffer size while IPA driver processing to perform read operation in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, S...
CVE-2019-2294
Usage of hard-coded magic number for calculating heap guard bytes can allow users to corrupt heap blocks without heap algorithm knowledge in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, S...
CVE-2019-2284
Possible use-after-free issue due to a race condition while calling camera ioctl concurrently in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MSM8909W, QC...
CVE-2019-2252
Classic buffer overflow vulnerability while playing the specific video whose Decode picture buffer size is more than 16 in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mo...
CVE-2019-10540
Buffer overflow in WLAN NAN function due to lack of check of count value received in NAN availability attribute in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Sn...
CVE-2019-10539
Possible buffer overflow issue due to lack of length check when parsing the extended cap IE header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdr...
CVE-2019-10538
Lack of check of address range received from firmware response allows modem to respond arbitrary pages into its address range which can compromise HLOS in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdr...

Copyright 2019, cxsecurity.com

 

Back to Top