CVE-2019-2294

CVE

Critical

Usage of hard-coded magic number for calculating heap guard bytes can allow users to corrupt heap blocks without heap algorithm knowledge i…

CVSS

9.8

Critical

EPSS

0.01

p55

Published

2019-01-01

Updated

2019-01-01

Description

Usage of hard-coded magic number for calculating heap guard bytes can allow users to corrupt heap blocks without heap algorithm knowledge in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9205, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9655, MSM8909W, MSM8996AU, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 650/52, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130

Tags · CWE

Pre-auth

CWE-330

CAPEC-59

CAPEC-112

CAPEC-485

Affected products

Mdm9205_firmwareMdm9206_firmwareMdm9607_firmwareMdm9615_firmwareMdm9625_firmwareMdm9635m_firmwareMdm9655_firmwareMsm8909w_firmwareMsm8996au_firmwareQcs605_firmwareQualcomm_215_firmwareSd_205_firmwareSd_210_firmwareSd_212_firmwareSd_410_firmwareSd_412_firmwareSd_425_firmwareSd_427_firmwareSd_429_firmwareSd_430_firmware

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Timeline

2019-01-01

Published

2019-01-01

Updated

CVSS 3.1 breakdown

Attack Vector

AV: N

Network (N)

Attack Complexity

AC: L

Low (L)

Privileges Required

PR: N

None (N)

User Interaction

UI: N

None (N)

Scope

S: U

Unchanged (U)

Confidentiality Impact

C: H

High (H)

Integrity Impact

I: H

High (H)

Availability Impact

A: H

High (H)

Exploit indicators

EPSS

0.009 · p55

Known exploited (KEV)

MITRE ATT&CK

Inferred via CAPEC

T1110Brute Force

└ via CAPEC-112 · CWE-330

T1552.004Private Keys

└ via CAPEC-485 · CWE-330

Known exploits — Сканер-ВС

No Сканер-ВС checks registered for this vulnerability yet.

Affected products

Qualcomm

Mdm9206 Mdm9607 Mdm9206 Firmware Mdm9607 Firmware Msm8996au Qcs605 Msm8996au Firmware Qcs605 Firmware Msm8909w Msm8909w Firmware+84

Product	Vendor	Status
mdm9205_firmware	*	Tracked
mdm9206_firmware	*	Tracked
mdm9607_firmware	*	Tracked
mdm9615_firmware	*	Tracked
mdm9625_firmware	*	Tracked
mdm9635m_firmware	*	Tracked
mdm9655_firmware	*	Tracked
msm8909w_firmware	*	Tracked
msm8996au_firmware	*	Tracked
qcs605_firmware	*	Tracked
qualcomm_215_firmware	*	Tracked
sd_205_firmware	*	Tracked
sd_210_firmware	*	Tracked
sd_212_firmware	*	Tracked
sd_410_firmware	*	Tracked
sd_412_firmware	*	Tracked
sd_425_firmware	*	Tracked
sd_427_firmware	*	Tracked
sd_429_firmware	*	Tracked
sd_430_firmware	*	Tracked

Showing first 20 of 47

Source databases

CVE