Vulnerability
CVE-2019-10486
Component: VISION
Location: OS
Race condition due to the lack of resource lock which will be concurrently modified in the memcpy statement leads to out of bound access in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, APQ8098, MDM9206, MDM9207C, MDM9607, MDM9640, MDM9650, MSM8905, MSM8909W, MSM8939, MSM8953, MSM8996AU, MSM8998, Nicobar, QCN7605, QCS405, QCS605, QM215, SDA660, SDA845, SDM429, SDM439, SDM630, SDM632, SDM636, SDM660, SDM710, SDM845, SDX20, SDX24, SM6150, SM7150, SM8150
Impact
Severity (Manufact.)
N/A
Severity (NIST)
7
Severity (Android)
N/A
Chipsets
17
Devices
923
Affected Hardware
| Name | Also known as | Manufacturer |
|---|---|---|
| MSM8905 | Qualcomm 205 | Qualcomm |
| QM215 | Qualcomm 215 | Qualcomm |
| SDM429 | Snapdragon 429 | Qualcomm |
| SDM439 | Snapdragon 439 | Qualcomm |
| MSM8939 | Snapdragon 615 | Qualcomm |
| MSM8953 | Snapdragon 625 | Qualcomm |
| SDM630 | Snapdragon 630 | Qualcomm |
| SDM632 | Snapdragon 632 | Qualcomm |
| SDM636 | Snapdragon 636 | Qualcomm |
| SDM660 | Snapdragon 660 | Qualcomm |
17 of 17 row(s) shown.
Rows per page
Page 1 of 2
Information reliability
The information on this website is intended to provide information on the big picture of chipset security and measure trends within the industry. Our information is obtained from several vantage points, checked for consistency, and automatically cross-referenced. However, this process may not always yield reliable information. Do not use the information on a particular vulnerability, chipset or device to verify your individual exposure in cases where inaccuracies are inacceptable, for instance to assess risks if you are a Politically Exposed Person.
Timeline
Introduced (est):
Jul 1, 2014
Reported:
Nov 21, 2018
Advisory Published:
Oct 7, 2019
CVE Published:
Nov 21, 2019
Android Patch Level:
None
