1. Home
  2. CVE Database
  3. CVE-2019-14030
HIGH · 7.8

CVE-2019-14030

The size of a buffer is determined by addition and multiplications operations that have the potential to overflow due to lack of bound check in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer...

Vulnerability Description

The size of a buffer is determined by addition and multiplications operations that have the potential to overflow due to lack of bound check in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, Rennell, SC8180X, SDM845, SDM850, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
QualcommMdm9205 Firmware-
QualcommMdm9205-
QualcommQcs404 Firmware-
QualcommQcs404-
QualcommRennell Firmware-
QualcommRennell-
QualcommSc8180X Firmware-
QualcommSc8180X-
QualcommSdm845 Firmware-
QualcommSdm845-
QualcommSdm850 Firmware-
QualcommSdm850-
QualcommSdx55 Firmware-
QualcommSdx55-
QualcommSm6150 Firmware-
QualcommSm6150-
QualcommSm7150 Firmware-
QualcommSm7150-
QualcommSm8150 Firmware-
QualcommSm8150-

Related Weaknesses (CWE)

CWE-120

References

FAQ

What is CVE-2019-14030?

CVE-2019-14030 is a vulnerability with a CVSS score of 7.8 (HIGH). The size of a buffer is determined by addition and multiplications operations that have the potential to overflow due to lack of bound check in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer...

How severe is CVE-2019-14030?

CVE-2019-14030 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-14030?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Mdm9205 Firmware, Qualcomm Mdm9205, Qualcomm Qcs404 Firmware, Qualcomm Qcs404, Qualcomm Rennell Firmware.