CVE-2019-10565
CRITICALQualcomm APQ8053 Firmware - Use-After-Free in Sensor Power Settings
Title source: llmDescription
Double free issue can happen when sensor power settings is freed by some thread while another thread try to access. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8053, MDM9206, MDM9207C, MDM9607, MSM8905, MSM8909, MSM8909W, QCN7605, QCS405, QCS605, SDM845, SDX24, SXR1130
References (1)
Core 1
Core References
Various Sources x_refsource_confirm
https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin
Scores
CVSS v3
9.8
EPSS
0.0032
EPSS Percentile
55.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-415
Status
published
Products (13)
qualcomm/apq8053_firmware
qualcomm/mdm9206_firmware
qualcomm/mdm9207c_firmware
qualcomm/mdm9607_firmware
qualcomm/msm8905_firmware
qualcomm/msm8909_firmware
qualcomm/msm8909w_firmware
qualcomm/qcn7605_firmware
qualcomm/qcs405_firmware
qualcomm/qcs605_firmware
... and 3 more
Published
Nov 06, 2019
Tracked Since
Feb 18, 2026