Published: 12/12/2019 Updated: 12/12/2019

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P

Use after free issue occurs when command destructors access dynamically allocated response buffer which is already deallocated during previous command teardwon sequence in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8098, MSM8909W, Nicobar, QCS405, QCS605, SDA845, SDM660, SDM670, SDM710, SDM845, SDX24, SM6150, SM7150, SM8150, SM8250, SXR2130

Vulnerable Product	Search on Vulmon	Subscribe to Product
qualcomm apq8098_firmware -
qualcomm msm8909w_firmware -
qualcomm nicobar_firmware -
qualcomm qcs405_firmware -
qualcomm qcs605_firmware -
qualcomm sda845_firmware -
qualcomm sdm660_firmware -
qualcomm sdm670_firmware -
qualcomm sdm710_firmware -
qualcomm sdm845_firmware -
qualcomm sdx24_firmware -
qualcomm sm6150_firmware -
qualcomm sm7150_firmware -
qualcomm sm8150_firmware -
qualcomm sm8250_firmware -
qualcomm sxr2130_firmware -

CWE-416 https://www.qualcomm.com/company/product-security/bulletins/november-2019-bulletin https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2019-10484

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect