CVE-2019-14089 - Qualcomm Qcs404 Firmware, Qualcomm Sa6155p Firmware and Qualcomm Rennell Firmware
u'Keymaster attestation key and device IDs provisioning which is a one time process is incorrectly allowed to be re-provisioned after a user data erase or a factory reset' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in Kamorta, Nicobar, QCS404, QCS610, Rennell, SA515M, SA6155P, SC7180, SC8180X, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130
Affected software
Qualcomm Qcs404 Firmware
Qualcomm Sa6155p Firmware
Qualcomm Rennell Firmware
Qualcomm Sa515m Firmware
Qualcomm Nicobar Firmware
Qualcomm Qcs610 Firmware
Qualcomm Sm8150 Firmware
Qualcomm Sm7150 Firmware
Qualcomm Sc7180 Firmware
Qualcomm Sm8250 Firmware
Qualcomm Sxr2130 Firmware
Qualcomm Sdx55 Firmware
Qualcomm Sm6150 Firmware
Qualcomm Kamorta Firmware
Qualcomm Sc8180x Firmware