CVE-2019-14093 - Qualcomm Sda660 Firmware, Qualcomm Mdm9607 Firmware and Qualcomm Sdm660 Firmware

Critical 7.8

Array out of bound access can occur in display module due to lack of bound check on input parcel received in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, QCM2150, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM429W, SDM439, SDM450, SDM632, SDM636, SDM660, SDX20

Affected software

Qualcomm Sda660 Firmware

Qualcomm Mdm9607 Firmware

Qualcomm Sdm660 Firmware

Qualcomm Msm8937 Firmware

Qualcomm Sdm429w Firmware

Qualcomm Sdm632 Firmware

Qualcomm Sdx20 Firmware

Qualcomm Msm8953 Firmware

Qualcomm Apq8098 Firmware

Qualcomm Apq8053 Firmware

Qualcomm Mdm9207c Firmware

Qualcomm Apq8096au Firmware

Qualcomm Apq8017 Firmware

Qualcomm Mdm9206 Firmware

Qualcomm Qcs605 Firmware

Qualcomm Sdm636 Firmware

Qualcomm Msm8940 Firmware

Qualcomm Apq8009 Firmware

Qualcomm Msm8909w Firmware

Qualcomm Qcm2150 Firmware

Qualcomm Sdm439 Firmware

Qualcomm Msm8917 Firmware

Qualcomm Msm8996 Firmware

Qualcomm Msm8996au Firmware

Qualcomm Sdm450 Firmware

Qualcomm Sda845 Firmware

Qualcomm Sdm429 Firmware

Qualcomm Qm215 Firmware

Qualcomm Qcs405 Firmware

Qualcomm Msm8920 Firmware

Qualcomm Mdm9650 Firmware

Reference links

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.