CVE-2019-10622 - Qualcomm Sm8250 Firmware, Qualcomm Sxr2130 Firmware and Qualcomm Sdm710 Firmware

Critical 9.1

Out of bound memory access can happen while parsing ADSP message due to lack of check of size of payload received from userspace in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8096AU, IPQ4019, IPQ6018, IPQ8064, IPQ8074, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, QCN7605, QCS605, SC8180X, SDM710, SDX24, SDX55, SM8150, SM8250, SXR2130

Affected software

Qualcomm Sm8250 Firmware

Qualcomm Sxr2130 Firmware

Qualcomm Sdm710 Firmware

Qualcomm Mdm9207c Firmware

Qualcomm Mdm9607 Firmware

Qualcomm Mdm9650 Firmware

Qualcomm Apq8009 Firmware

Qualcomm Ipq8064 Firmware

Qualcomm Apq8096au Firmware

Qualcomm Qcs605 Firmware

Qualcomm Sdx24 Firmware

Qualcomm Ipq4019 Firmware

Qualcomm Ipq8074 Firmware

Qualcomm Ipq6018 Firmware

Qualcomm Qcn7605 Firmware

Qualcomm Sm8150 Firmware

Qualcomm Mdm9206 Firmware

Qualcomm Mdm9640 Firmware

Qualcomm Sc8180x Firmware

Qualcomm Sdx55 Firmware

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.