CVE-2019-14111

CRITICAL

Snapdragon Auto Snapdragon Compute Snapdragon Connectivity Snapdrag...

Title source: llm

Description

Possible buffer overflow while handling NAN reception of NMF in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, Rennell, SC7180, SC8180X, SM6150, SM7150, SM8150, SXR2130

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin

Scores

CVSS v3 9.8

EPSS 0.0036

EPSS Percentile 57.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-120

Status published

Products (15)

qualcomm/ipq6018_firmware

qualcomm/ipq8074_firmware

qualcomm/nicobar_firmware

qualcomm/qca6390_firmware

qualcomm/qca8081_firmware

qualcomm/qcn7605_firmware

qualcomm/qcs404_firmware

qualcomm/qcs405_firmware

qualcomm/rennell_firmware

qualcomm/sc7180_firmware

... and 5 more

Published Apr 16, 2020

Tracked Since Feb 18, 2026