Details of VAR-201909-1456

ID

VAR-201909-1456

CVE

CVE-2019-10540

TITLE

plural Snapdragon Classic buffer overflow vulnerability in products

Trust: 0.8

sources: JVNDB: JVNDB-2019-010099

DESCRIPTION

Buffer overflow in WLAN NAN function due to lack of check of count value received in NAN availability attribute in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, MSM8996AU, QCA6174A, QCA6574AU, QCA8081, QCA9377, QCA9379, QCS404, QCS405, QCS605, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130. plural Snapdragon The product contains a classic buffer overflow vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Qualcomm MSM8996AU is a central processing unit (CPU) product of Qualcomm (Qualcomm). A buffer error vulnerability exists in several Qualcomm products. This vulnerability stems from the incorrect verification of data boundaries when the network system or product performs operations on the memory, resulting in incorrect read and write operations to other associated memory locations. Attackers can exploit this vulnerability to cause buffer overflow or heap overflow, etc. The following products and versions are affected: Qualcomm IPQ8074 ; Qualcomm MSM8996AU ; Qualcomm QCA6174A ; Qualcomm QCA6574AU ; Qualcomm QCA8081 ; Qualcomm QCA9377 ; Qualcomm QCA9379 ; Qualcomm QCS404 ; Qualcomm QCS405 ; Qualcomm QCS605 ; Qualcomm SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130

Trust: 1.71

sources: NVD: CVE-2019-10540 // JVNDB: JVNDB-2019-010099 // VULHUB: VHN-142097

AFFECTED PRODUCTS

vendor:	qualcomm	model:	sd 675	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 850	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca8081	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	ipq8074	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca9377	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 670	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 820	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 712	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 730	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6174a	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs404	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 710	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 835	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 845	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 855	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sxr1130	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs405	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	msm8996au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 636	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm630	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca9379	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sda660	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 8cx	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qcs605	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	qca6574au	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sd 665	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	sdm660	scope:	eq	version:	-	Trust: 1.0
vendor:	qualcomm	model:	ipq8074	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	msm8996au	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qca6174a	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qca6574au	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qca8081	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qca9377	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qca9379	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qcs404	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qcs405	scope:	-	version:	-	Trust: 0.8
vendor:	qualcomm	model:	qcs605	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2019-010099 // NVD: CVE-2019-10540

CVSS

SEVERITY

CVSSV2

CVSSV3

NVD:	CVE-2019-10540
value:	CRITICAL
Trust: 1.8
CNNVD:	CNNVD-201908-434
value:	CRITICAL
Trust: 0.6
VULHUB:	VHN-142097
value:	HIGH
Trust: 0.1

NVD:
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	FALSE
obtainAllPrivilege:	FALSE
obtainUserPrivilege:	FALSE
obtainOtherPrivilege:	FALSE
userInteractionRequired:	FALSE
version:	2.0
Trust: 1.0
NVD:	CVE-2019-10540
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8
VULHUB:	VHN-142097
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

NVD:
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	5.9
version:	3.1
Trust: 1.0
NVD:	CVE-2019-10540
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: VULHUB: VHN-142097 // JVNDB: JVNDB-2019-010099 // NVD: CVE-2019-10540 // CNNVD: CNNVD-201908-434

PROBLEMTYPE DATA

problemtype:

CWE-120

Trust: 1.9

sources: VULHUB: VHN-142097 // JVNDB: JVNDB-2019-010099 // NVD: CVE-2019-10540

TYPE

buffer error

Trust: 0.6

sources: CNNVD: CNNVD-201908-434

CONFIGURATIONS

sources: NVD: CVE-2019-10540

PATCH

title:	August 2019 Qualcomm Technologies, Inc. Security Bulletin	url:	https://www.qualcomm.com/company/product-security/bulletins/august-2019-bulletin	Trust: 0.8
title:	Multiple Qualcomm Product Buffer Error Vulnerability Fix	url:	http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=96174	Trust: 0.6

sources: JVNDB: JVNDB-2019-010099 // CNNVD: CNNVD-201908-434

EXTERNAL IDS

db:	NVD	id:	CVE-2019-10540	Trust: 2.5
db:	JVNDB	id:	JVNDB-2019-010099	Trust: 0.8
db:	CNNVD	id:	CNNVD-201908-434	Trust: 0.7
db:	VULHUB	id:	VHN-142097	Trust: 0.1

sources: VULHUB: VHN-142097 // JVNDB: JVNDB-2019-010099 // NVD: CVE-2019-10540 // CNNVD: CNNVD-201908-434

REFERENCES

url:	https://www.qualcomm.com/company/product-security/bulletins	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2019-10540	Trust: 1.4
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-10540	Trust: 0.8
url:	https://source.android.com/security/bulletin/2019-08-01.html	Trust: 0.6
url:	https://vigilance.fr/vulnerability/google-android-multiple-vulnerabilities-of-august-2019-29951	Trust: 0.6

sources: VULHUB: VHN-142097 // JVNDB: JVNDB-2019-010099 // NVD: CVE-2019-10540 // CNNVD: CNNVD-201908-434

SOURCES

db:	VULHUB	id:	VHN-142097
db:	JVNDB	id:	JVNDB-2019-010099
db:	NVD	id:	CVE-2019-10540
db:	CNNVD	id:	CNNVD-201908-434

LAST UPDATE DATE

2023-12-18T13:33:21.396000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-142097	date:	2019-10-03T00:00:00
db:	JVNDB	id:	JVNDB-2019-010099	date:	2019-10-04T00:00:00
db:	NVD	id:	CVE-2019-10540	date:	2019-10-03T14:08:44.517
db:	CNNVD	id:	CNNVD-201908-434	date:	2019-10-14T00:00:00

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-142097	date:	2019-09-30T00:00:00
db:	JVNDB	id:	JVNDB-2019-010099	date:	2019-10-04T00:00:00
db:	NVD	id:	CVE-2019-10540	date:	2019-09-30T16:15:11.103
db:	CNNVD	id:	CNNVD-201908-434	date:	2019-08-06T00:00:00