CVE-2019-2250
Published May 24, 2019
Last updated 3 years ago
Overview
- Description
- Kernel can write to arbitrary memory address passed by user while freeing/stopping a thread in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in QCS605, SD 675, SD 712 / SD 710 / SD 670, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SM7150, SXR1130
- Source
- product-security@qualcomm.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.0
- Type
- Primary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 7.2
- Impact score
- 10
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-119
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B05FD66D-13A6-40E9-A64B-E428378F237E"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_675_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3F900C8F-9763-441A-B97E-E5394A68A08A"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_675:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "589C1001-E9F6-41A6-BCC8-A94A3C97F2E6"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_712_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6BFF8872-645F-4A05-BAF9-7797CFBE37C6"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_712:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "9CB91AFF-C149-4F5C-92EC-E78E66935528"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_710_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2B529780-DB0A-4F9C-AE63-6DEC593B86E5"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_710:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "669E7360-E8C3-4BB8-A3B6-61BD58AFAF62"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_670_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D49606C5-7306-4F33-864C-C1905594F09C"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_670:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "B43964AF-7CEC-420A-935B-D3895B2BAC70"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_835_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1CFF35A3-1472-4665-9DAB-1ABC45C0D5B4"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_835:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "F930E9BF-C502-49C6-8BE8-9A711B89FA1B"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_845_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0A2D2B3B-CB28-46AA-9117-A7FA371FDE80"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_845:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "DE18BF66-B0DB-48BB-B43A-56F01821F5A3"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_850_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0C10C7CB-3B66-4F17-8146-6A85611E2BA9"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_850:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "B9DA765F-53DE-4FB0-B825-6C11B3177641"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_855_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "91400943-3D25-4E44-9FFD-9E3076305D80"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_855:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "57B16867-710D-4748-8636-635E2C6F7389"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_8cx_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A71D1A7C-537F-458B-BA56-A11F95E36EA9"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_8cx:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "716DEC4D-D854-44CD-8A14-AA5AFD96809E"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sm7150_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F63A748F-2236-4486-83F1-DE4BCBE5D56D"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sm7150:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "184F3DFC-27E8-48AC-B46C-C589DBCBF030"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sxr1130_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "096F7BA5-FF58-416B-93EF-733B16326C86"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sxr1130:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "7AF958FB-1611-4102-A2DB-8D4311AE0D72"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]