CVE-2019-10531
Last modified
CVE-2019-10531 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. Incorrect reading of system image resulting in buffer overflow when size of system image is increased in Snapdragon Auto, Snapdragon Mobile, Snapdragon Wearables in MDM9607, MSM8909W, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 439 / SD 429, SD 450, SD 625, SD 632, SDM439. EPSS estimates a 0.90% chance of exploitation in the next 30 days.
Description
Incorrect reading of system image resulting in buffer overflow when size of system image is increased in Snapdragon Auto, Snapdragon Mobile, Snapdragon Wearables in MDM9607, MSM8909W, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 439 / SD 429, SD 450, SD 625, SD 632, SDM439
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Qualcomm | Mdm9607 Firmware | All versions |
| Qualcomm | Msm8909w Firmware | All versions |
| Qualcomm | Qualcomm 215 Firmware | All versions |
| Qualcomm | Sd 210 Firmware | All versions |
| Qualcomm | Sd 212 Firmware | All versions |
| Qualcomm | Sd 205 Firmware | All versions |
| Qualcomm | Sd 425 Firmware | All versions |
| Qualcomm | Sd 439 Firmware | All versions |
| Qualcomm | Sd 429 Firmware | All versions |
| Qualcomm | Sd 450 Firmware | All versions |
| Qualcomm | Sd 625 Firmware | All versions |
| Qualcomm | Sd 632 Firmware | All versions |
| Qualcomm | Sdm439 Firmware | All versions |
References
- https://source.android.com/security/bulletin/Patch, Vendor Advisory
- https://source.android.com/security/bulletin/Patch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2019-10531?
How severe is CVE-2019-10531?
How do I fix CVE-2019-10531?
Are you affected by CVE-2019-10531?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST