CVE-2019-2252

Classic buffer overflow vulnerability while playing the specific video whose Decode picture buffer size is more than 16 in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9650, MSM8909W, MSM8996AU, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130

Published : 2019-09-30 16:15 Updated : 2019-10-03 14:02

10.0
CVSS Score More info
Score 10.0 / 10
10.0
Vendor Product Version URI
Qualcomm Mdm9650 Firmware - cpe:/o:qualcomm:mdm9650_firmware:-
Qualcomm Msm8909w Firmware - cpe:/o:qualcomm:msm8909w_firmware:-
Qualcomm Msm8996au Firmware - cpe:/o:qualcomm:msm8996au_firmware:-
Qualcomm Qcs605 Firmware - cpe:/o:qualcomm:qcs605_firmware:-
Qualcomm Qualcomm 215 Firmware - cpe:/o:qualcomm:qualcomm_215_firmware:-
Qualcomm Sd 205 Firmware - cpe:/o:qualcomm:sd_205_firmware:-
Qualcomm Sd 210 Firmware - cpe:/o:qualcomm:sd_210_firmware:-
Qualcomm Sd 212 Firmware - cpe:/o:qualcomm:sd_212_firmware:-
Qualcomm Sd 425 Firmware - cpe:/o:qualcomm:sd_425_firmware:-
Qualcomm Sd 427 Firmware - cpe:/o:qualcomm:sd_427_firmware:-
Qualcomm Sd 429 Firmware - cpe:/o:qualcomm:sd_429_firmware:-
Qualcomm Sd 430 Firmware - cpe:/o:qualcomm:sd_430_firmware:-
Qualcomm Sd 435 Firmware - cpe:/o:qualcomm:sd_435_firmware:-
Qualcomm Sd 439 Firmware - cpe:/o:qualcomm:sd_439_firmware:-
Qualcomm Sd 450 Firmware - cpe:/o:qualcomm:sd_450_firmware:-
Qualcomm Sd 625 Firmware - cpe:/o:qualcomm:sd_625_firmware:-
Qualcomm Sd 632 Firmware - cpe:/o:qualcomm:sd_632_firmware:-
Qualcomm Sd 636 Firmware - cpe:/o:qualcomm:sd_636_firmware:-
Qualcomm Sd 665 Firmware - cpe:/o:qualcomm:sd_665_firmware:-
Qualcomm Sd 670 Firmware - cpe:/o:qualcomm:sd_670_firmware:-
Qualcomm Sd 675 Firmware - cpe:/o:qualcomm:sd_675_firmware:-
Qualcomm Sd 710 Firmware - cpe:/o:qualcomm:sd_710_firmware:-
Qualcomm Sd 712 Firmware - cpe:/o:qualcomm:sd_712_firmware:-
Qualcomm Sd 820 Firmware - cpe:/o:qualcomm:sd_820_firmware:-
Qualcomm Sd 820a Firmware - cpe:/o:qualcomm:sd_820a_firmware:-
Qualcomm Sd 835 Firmware - cpe:/o:qualcomm:sd_835_firmware:-
Qualcomm Sd 845 Firmware - cpe:/o:qualcomm:sd_845_firmware:-
Qualcomm Sd 850 Firmware - cpe:/o:qualcomm:sd_850_firmware:-
Qualcomm Sd 855 Firmware - cpe:/o:qualcomm:sd_855_firmware:-
Qualcomm Sd 8cx Firmware - cpe:/o:qualcomm:sd_8cx_firmware:-
Qualcomm Sda660 Firmware - cpe:/o:qualcomm:sda660_firmware:-
Qualcomm Sdm439 Firmware - cpe:/o:qualcomm:sdm439_firmware:-
Qualcomm Sdm630 Firmware - cpe:/o:qualcomm:sdm630_firmware:-
Qualcomm Sdm660 Firmware - cpe:/o:qualcomm:sdm660_firmware:-
Qualcomm Snapdragon High Med 2016 Firmware - cpe:/o:qualcomm:snapdragon_high_med_2016_firmware:-
Qualcomm Sxr1130 Firmware - cpe:/o:qualcomm:sxr1130_firmware:-
  1. Qualcomm (36) Search CVE
    1. Sd 212 Firmware (1) Search CVE
      1. -
    2. Sd 675 Firmware (1) Search CVE
      1. -
    3. Sd 670 Firmware (1) Search CVE
      1. -
    4. Sd 439 Firmware (1) Search CVE
      1. -
    5. Sd 435 Firmware (1) Search CVE
      1. -
    6. Sd 835 Firmware (1) Search CVE
      1. -
    7. Sd 8cx Firmware (1) Search CVE
      1. -
    8. Mdm9650 Firmware (1) Search CVE
      1. -
    9. Sxr1130 Firmware (1) Search CVE
      1. -
    10. Qualcomm 215 Firmware (1) Search CVE
      1. -
    11. Qcs605 Firmware (1) Search CVE
      1. -
    12. Sdm630 Firmware (1) Search CVE
      1. -
    13. Sd 429 Firmware (1) Search CVE
      1. -
    14. Sd 205 Firmware (1) Search CVE
      1. -
    15. Snapdragon High Med 2016 Firmware (1) Search CVE
      1. -
    16. Sd 636 Firmware (1) Search CVE
      1. -
    17. Sd 625 Firmware (1) Search CVE
      1. -
    18. Sd 820 Firmware (1) Search CVE
      1. -
    19. Sd 632 Firmware (1) Search CVE
      1. -
    20. Sdm660 Firmware (1) Search CVE
      1. -
    21. Sdm439 Firmware (1) Search CVE
      1. -
    22. Sd 855 Firmware (1) Search CVE
      1. -
    23. Sd 425 Firmware (1) Search CVE
      1. -
    24. Sd 820a Firmware (1) Search CVE
      1. -
    25. Sd 210 Firmware (1) Search CVE
      1. -
    26. Msm8909w Firmware (1) Search CVE
      1. -
    27. Msm8996au Firmware (1) Search CVE
      1. -
    28. Sd 710 Firmware (1) Search CVE
      1. -
    29. Sd 845 Firmware (1) Search CVE
      1. -
    30. Sd 430 Firmware (1) Search CVE
      1. -
    31. Sd 712 Firmware (1) Search CVE
      1. -
    32. Sd 427 Firmware (1) Search CVE
      1. -
    33. Sd 850 Firmware (1) Search CVE
      1. -
    34. Sd 450 Firmware (1) Search CVE
      1. -
    35. Sda660 Firmware (1) Search CVE
      1. -
    36. Sd 665 Firmware (1) Search CVE
      1. -

CWE

ID Name Description Links
CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') The program copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow. CVE

History of changes

Date Event
2019-10-03 14:02
2019-09-30 16:15

New CVE