CVE-2019-2257
Published Jun 14, 2019
Last updated 4 years ago
Overview
- Description
- Wrong permissions in configuration file can lead to unauthorized permission in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9607, MDM9650, MSM8909W, MSM8996AU, QCS405, QCS605, SD 210/SD 212/SD 205, SD 615/16/SD 415, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 855, SDA660, SDM660, SDX20, SDX24
- Source
- product-security@qualcomm.com
- NVD status
- Analyzed
Risk scores
CVSS 3.0
- Type
- Primary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 7.2
- Impact score
- 10
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-732
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4E2F2D26-2833-45A4-81F0-8E9F338C1E13"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "4EB171B1-D163-4801-A241-8DD7193A5DCB"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A35FECFB-60AE-42A8-BCBB-FEA7D5826D49"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E9765187-8653-4D66-B230-B2CE862AC5C0"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "35B7E25E-FA92-4C36-883C-CFF36F4B3507"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "ECD99C6F-2444-4A5E-A517-0C8023DDF23D"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FE28A59C-7AA6-4B85-84E8-07852B96108E"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "5DEE828B-09A7-4AC1-8134-491A7C87C118"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8CA1E7B0-782B-4757-B118-802943798984"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "95CB08EC-AE12-4A54-AA3C-998F01FC8763"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "36F5A18B-8C9E-4A38-B994-E3E2696BB83D"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "B703667D-DE09-40AF-BA44-E0E56252A790"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B05FD66D-13A6-40E9-A64B-E428378F237E"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:qcs605:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D0D665C1-3EBA-42F2-BF56-55E6C365F7DF"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_210_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0FA80D57-3191-47CF-AD3F-9F2D64E443FE"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_210:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "B2AFB212-F01A-4CEB-8DB4-2E0CC2308CB6"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_212_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E0986EF1-0974-488E-84C4-6880F876CE55"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_212:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "8C08BA58-2EBC-4A22-85A4-2ECD54693B9B"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_205_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "27110478-4C08-49E6-BD53-8BAAD9D5BD65"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_205:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "3664D302-D22A-4B25-B534-3097AE2F8573"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_615_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "549E6F7E-A54F-423F-BD4A-A8FB97DBD39E"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_615:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "992C3835-7183-4D96-8647-DD9916880323"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_616_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A7B95CCC-37F1-4768-8D64-CA2028E93E03"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_616:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D1426161-4F7C-44B1-AA9E-EA661AA68947"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_415_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ECF81213-DE2D-4C4B-99E8-71AFD87E92CD"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_415:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "95E826EF-343B-47FA-AB54-F13E868CE6A7"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_636_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CE94E380-CB75-462E-B411-BF38F17D53B2"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_636:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "0947F38F-3DC2-45F1-B3B3-963922F32054"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_712_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6BFF8872-645F-4A05-BAF9-7797CFBE37C6"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_712:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "9CB91AFF-C149-4F5C-92EC-E78E66935528"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_710_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2B529780-DB0A-4F9C-AE63-6DEC593B86E5"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_710:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "669E7360-E8C3-4BB8-A3B6-61BD58AFAF62"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_670_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D49606C5-7306-4F33-864C-C1905594F09C"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_670:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "B43964AF-7CEC-420A-935B-D3895B2BAC70"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_820_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E077FC03-F86F-417A-A3E6-BC88CB85C6F0"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_820:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E016356C-94ED-4CDD-8351-97D265FE036E"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_820a_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E08016A2-E4FE-4E9C-A915-C66BE157AFB5"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_820a:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "018452D0-007C-4740-B2AF-E5C8BBAC310F"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sd_855_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "91400943-3D25-4E44-9FFD-9E3076305D80"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sd_855:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "57B16867-710D-4748-8636-635E2C6F7389"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sda660_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A2326BD7-28A5-4244-8501-B109913E7AE6"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sda660:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "532D244B-8B5A-4923-B7F1-9DC0A5FC0E9D"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "24D7B67C-6FEC-48F8-9D46-778E4528BC20"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "05006807-D961-446C-B8DC-C87507F1316E"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "794BA13C-3C63-4695-AA45-676F85D904BE"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:qualcomm:sdx24_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F9BE864E-7B1E-44D5-A10A-60078095DE33"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:qualcomm:sdx24:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "96DD6B48-2554-464D-A061-DBB4B8E00758"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]