Memory Overwrite Vulnerability in Snapdragon Compute, Consumer IOT, Industrial IOT, Mobile, Voice & Music, Wired Infrastructure and Networking

Memory Overwrite Vulnerability in Snapdragon Compute, Consumer IOT, Industrial IOT, Mobile, Voice & Music, Wired Infrastructure and Networking

CVE-2019-2346 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Firmware is getting into loop of overwriting memory when scan command is given from host because of improper validation. in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ8074, QCA8081, QCS404, QCS405, QCS605, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660

Learn more about our Industrial Pen Testing.