7 - CVE-2019-2260

Executive Summary

Informations
Name	CVE-2019-2260	First vendor Publication	2019-07-22
Vendor	Cve	Last vendor Modification	2019-07-24

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Overall CVSS Score	7
Base Score	7	Environmental Score	7
impact SubScore	5.9	Temporal Score	7
Exploitabality Sub Score	1

Attack Vector	Local	Attack Complexity	High
Privileges Required	Low	User Interaction	None
Scope	Unchanged	Confidentiality Impact	High
Integrity Impact	High	Availability Impact	High
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score	6.9	Attack Range	Local
Cvss Impact Score	10	Attack Complexity	Medium
Cvss Expoit Score	3.4	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A race condition occurs while processing perf-event which can lead to a use after free condition in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8909W, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 665, SD 712 / SD 710 / SD 670, SD 730, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDM439, SDM630, SDM660, SDX20, SDX24, Snapdragon_High_Med_2016, SXR1130

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2260

CWE : Common Weakness Enumeration

%	Id	Name
50 %	CWE-416	Use After Free
50 %	CWE-362	Race Condition

CPE : Common Platform Enumeration

Type	Description	Count
Os	Qualcomm Mdm9150 Firmware cpe:2.3:o:qualcomm:mdm9150_firmware:-:::::::*	1
Os	Qualcomm Mdm9206 Firmware cpe:2.3:o:qualcomm:mdm9206_firmware:-:::::::*	1
Os	Qualcomm Mdm9607 Firmware cpe:2.3:o:qualcomm:mdm9607_firmware:-:::::::*	1
Os	Qualcomm Mdm9640 Firmware cpe:2.3:o:qualcomm:mdm9640_firmware:-:::::::*	1
Os	Qualcomm Mdm9650 Firmware cpe:2.3:o:qualcomm:mdm9650_firmware:-:::::::*	1
Os	Qualcomm Msm8909W Firmware cpe:2.3:o:qualcomm:msm8909w_firmware:-:::::::*	1
Os	Qualcomm Qcs405 Firmware cpe:2.3:o:qualcomm:qcs405_firmware:-:::::::*	1
Os	Qualcomm Qcs605 Firmware cpe:2.3:o:qualcomm:qcs605_firmware:-:::::::*	1
Os	Qualcomm Qualcomm 215 Firmware cpe:2.3:o:qualcomm:qualcomm_215_firmware:-:::::::*	1
Os	Qualcomm Sd 205 Firmware cpe:2.3:o:qualcomm:sd_205_firmware:-:::::::*	1
Os	Qualcomm Sd 210 Firmware cpe:2.3:o:qualcomm:sd_210_firmware:-:::::::*	1
Os	Qualcomm Sd 212 Firmware cpe:2.3:o:qualcomm:sd_212_firmware:-:::::::*	1
Os	Qualcomm Sd 425 Firmware cpe:2.3:o:qualcomm:sd_425_firmware:-:::::::*	1
Os	Qualcomm Sd 427 Firmware cpe:2.3:o:qualcomm:sd_427_firmware:-:::::::*	1
Os	Qualcomm Sd 429 Firmware cpe:2.3:o:qualcomm:sd_429_firmware:-:::::::*	1
Os	Qualcomm Sd 430 Firmware cpe:2.3:o:qualcomm:sd_430_firmware:-:::::::*	1
Os	Qualcomm Sd 435 Firmware cpe:2.3:o:qualcomm:sd_435_firmware:-:::::::*	1
Os	Qualcomm Sd 439 Firmware cpe:2.3:o:qualcomm:sd_439_firmware:-:::::::*	1
Os	Qualcomm Sd 450 Firmware cpe:2.3:o:qualcomm:sd_450_firmware:-:::::::*	1
Os	Qualcomm Sd 625 Firmware cpe:2.3:o:qualcomm:sd_625_firmware:-:::::::*	1
Os	Qualcomm Sd 632 Firmware cpe:2.3:o:qualcomm:sd_632_firmware:-:::::::*	1
Os	Qualcomm Sd 636 Firmware cpe:2.3:o:qualcomm:sd_636_firmware:-:::::::*	1
Os	Qualcomm Sd 665 Firmware cpe:2.3:o:qualcomm:sd_665_firmware:-:::::::*	1
Os	Qualcomm Sd 670 Firmware cpe:2.3:o:qualcomm:sd_670_firmware:-:::::::*	1
Os	Qualcomm Sd 710 Firmware cpe:2.3:o:qualcomm:sd_710_firmware:-:::::::*	1
Os	Qualcomm Sd 712 Firmware cpe:2.3:o:qualcomm:sd_712_firmware:-:::::::*	1
Os	Qualcomm Sd 730 Firmware cpe:2.3:o:qualcomm:sd_730_firmware:-:::::::*	1
Os	Qualcomm Sd 820A Firmware cpe:2.3:o:qualcomm:sd_820a_firmware:-:::::::*	1
Os	Qualcomm Sd 835 Firmware cpe:2.3:o:qualcomm:sd_835_firmware:-:::::::*	1
Os	Qualcomm Sd 845 Firmware cpe:2.3:o:qualcomm:sd_845_firmware:-:::::::*	1
Os	Qualcomm Sd 850 Firmware cpe:2.3:o:qualcomm:sd_850_firmware:-:::::::*	1
Os	Qualcomm Sd 855 Firmware cpe:2.3:o:qualcomm:sd_855_firmware:-:::::::*	1
Os	Qualcomm Sdm439 Firmware cpe:2.3:o:qualcomm:sdm439_firmware:-:::::::*	1
Os	Qualcomm Sdm630 Firmware cpe:2.3:o:qualcomm:sdm630_firmware:-:::::::*	1
Os	Qualcomm Sdm660 Firmware cpe:2.3:o:qualcomm:sdm660_firmware:-:::::::*	1
Os	Qualcomm Sdx20 Firmware cpe:2.3:o:qualcomm:sdx20_firmware:-:::::::*	1
Os	Qualcomm Sdx24 Firmware cpe:2.3:o:qualcomm:sdx24_firmware:-:::::::*	1
Os	Qualcomm Snapdragon High Med 2016 Firmware cpe:2.3:o:qualcomm:snapdragon_high_med_2016_firmware:-:::::::*	1
Os	Qualcomm Sxr1130 Firmware cpe:2.3:o:qualcomm:sxr1130_firmware:-:::::::*	1

Sources (Detail)

Source	Url
CONFIRM	https://www.codeaurora.org/security-bulletin/2019/06/03/june-2019-code-aurora...

Alert History

If you want to see full details history, please login or register.

Date	Informations
2020-05-23 02:29:21	Multiple Updates
2019-07-24 17:19:38	Multiple Updates
2019-07-22 21:19:35	First insertion

7 - CVE-2019-2260

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

Sources (Detail)

Alert History

Global Informations

Open Standards

COMPANY

STANDARDS

RECENT POSTS

MENU