CVE-2019-2240

MEDIUM

Snapdragon Auto et al - Unpredictable Behaviour

Title source: llm

Description

While sending the rendered surface content to the screen, Error handling is not properly checked results in an unpredictable behaviour in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ4019, IPQ8064, IPQ8074, MDM9150, MDM9206, MDM9607, MDM9640, MDM9650, MSM8996AU, QCA6174A, QCA6564, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCA9531, QCA9880, QCA9886, QCA9980, QCN5502, QCS404, QCS605, SD 210/SD 212/SD 205, SD 425, SD 600, SD 625, SD 636, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SDX20, SDX24, SXR1130

References (1)

[Vendor Advisory] https://www.qualcomm.com/company/product-security/bulletins

Scores

CVSS v3 5.5

EPSS 0.0005

EPSS Percentile 14.7%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Classification

CWE

CWE-755

Status published

Affected Products (50)

qualcomm/ipq4019_firmware

qualcomm/ipq8064_firmware

qualcomm/ipq8074_firmware

qualcomm/mdm9150_firmware

qualcomm/mdm9206_firmware

qualcomm/mdm9607_firmware

qualcomm/mdm9640_firmware

qualcomm/mdm9650_firmware

qualcomm/msm8996au_firmware

qualcomm/qca6174a_firmware

qualcomm/qca6564_firmware

qualcomm/qca6574_firmware

qualcomm/qca6574au_firmware

qualcomm/qca6584_firmware

qualcomm/qca6584au_firmware

... and 35 more

Timeline

Published Jul 25, 2019

Tracked Since Feb 18, 2026