CVE-2019-14009

Out of bound memory access while processing TZ command handler due to improper input validation on response length received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, MDM9150, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, SDA660, SDA845, SDM630, SDM636, SDM660, SDM845, SDM850, SXR2130
Configurations

Configuration 1


Information

Published : 2020-04-16 11:15

Updated : 2020-04-22 02:17


NVD link : CVE-2019-14009

Mitre link : CVE-2019-14009

Products Affected
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer