CVE-2019-14088
Summary
| CVE | CVE-2019-14088 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-02-07 05:15:00 UTC |
| Updated | 2020-02-12 17:15:00 UTC |
| Description | Possible use after free issue while CRM is accessing the link pointer from device private data due to lack of resource protection in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, MDM9206, MDM9207C, MDM9607, QCS605, SDM429W, SDX24, SM8150, SXR1130 |
Risk And Classification
Problem Types: CWE-416
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Qualcomm | Apq8009 | - | All | All | All |
| Hardware | Qualcomm | Apq8009 | - | All | All | All |
| Operating System | Qualcomm | Apq8009 Firmware | - | All | All | All |
| Operating System | Qualcomm | Apq8009 Firmware | - | All | All | All |
| Hardware | Qualcomm | Mdm9206 | - | All | All | All |
| Hardware | Qualcomm | Mdm9206 | - | All | All | All |
| Operating System | Qualcomm | Mdm9206 Firmware | - | All | All | All |
| Operating System | Qualcomm | Mdm9206 Firmware | - | All | All | All |
| Hardware | Qualcomm | Mdm9207c | - | All | All | All |
| Hardware | Qualcomm | Mdm9207c | - | All | All | All |
| Operating System | Qualcomm | Mdm9207c Firmware | - | All | All | All |
| Operating System | Qualcomm | Mdm9207c Firmware | - | All | All | All |
| Hardware | Qualcomm | Mdm9607 | - | All | All | All |
| Hardware | Qualcomm | Mdm9607 | - | All | All | All |
| Operating System | Qualcomm | Mdm9607 Firmware | - | All | All | All |
| Operating System | Qualcomm | Mdm9607 Firmware | - | All | All | All |
| Hardware | Qualcomm | Qcs605 | - | All | All | All |
| Hardware | Qualcomm | Qcs605 | - | All | All | All |
| Operating System | Qualcomm | Qcs605 Firmware | - | All | All | All |
| Operating System | Qualcomm | Qcs605 Firmware | - | All | All | All |
| Hardware | Qualcomm | Sdm429w | - | All | All | All |
| Hardware | Qualcomm | Sdm429w | - | All | All | All |
| Operating System | Qualcomm | Sdm429w Firmware | - | All | All | All |
| Operating System | Qualcomm | Sdm429w Firmware | - | All | All | All |
| Hardware | Qualcomm | Sdx24 | - | All | All | All |
| Hardware | Qualcomm | Sdx24 | - | All | All | All |
| Operating System | Qualcomm | Sdx24 Firmware | - | All | All | All |
| Operating System | Qualcomm | Sdx24 Firmware | - | All | All | All |
| Hardware | Qualcomm | Sm8150 | - | All | All | All |
| Hardware | Qualcomm | Sm8150 | - | All | All | All |
| Operating System | Qualcomm | Sm8150 Firmware | - | All | All | All |
| Operating System | Qualcomm | Sm8150 Firmware | - | All | All | All |
| Hardware | Qualcomm | Sxr1130 | - | All | All | All |
| Hardware | Qualcomm | Sxr1130 | - | All | All | All |
| Operating System | Qualcomm | Sxr1130 Firmware | - | All | All | All |
| Operating System | Qualcomm | Sxr1130 Firmware | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| ZDI-20-199 | Zero Day Initiative | MISC | www.zerodayinitiative.com | Third Party Advisory, VDB Entry |
| February 2020 Security Bulletin | Qualcomm | CONFIRM | www.qualcomm.com | Patch, Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 610347 Google Android May 2021 Security Patch Missing for Huawei EMUI