CVE-2019-14122 — HIGH (7.8)

Vulnerability Description

Memory failure in SKB if it fails to to add the requested padding to the skb in low memory targets or targets with major memory fragmentation in Snapdragon Auto, Snapdragon Mobile in Saipan, SM8150, SM8250, SXR2130

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Qualcomm	Saipan Firmware	-
Qualcomm	Saipan	-
Qualcomm	Sm8150 Firmware	-
Qualcomm	Sm8150	-
Qualcomm	Sm8250 Firmware	-
Qualcomm	Sm8250	-
Qualcomm	Sxr2130 Firmware	-
Qualcomm	Sxr2130	-

Related Weaknesses (CWE)

CWE-755

References

https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinPatchVendor Advisory
https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletinPatchVendor Advisory

FAQ

What is CVE-2019-14122?

CVE-2019-14122 is a vulnerability with a CVSS score of 7.8 (HIGH). Memory failure in SKB if it fails to to add the requested padding to the skb in low memory targets or targets with major memory fragmentation in Snapdragon Auto, Snapdragon Mobile in Saipan, SM8150, S...

How severe is CVE-2019-14122?

CVE-2019-14122 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-14122?

Check the references section above for vendor advisories and patch information. Affected products include: Qualcomm Saipan Firmware, Qualcomm Saipan, Qualcomm Sm8150 Firmware, Qualcomm Sm8150, Qualcomm Sm8250 Firmware.