CVE-2019-2251
HIGHQualcomm Snapdragon Firmware - Stack Buffer Overflow via Bitmap File Processing
Title source: llmDescription
If a bitmap file is loaded from any un-authenticated source, there is a possibility that the bitmap can potentially cause stack buffer overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8016, APQ8096AU, APQ8098, MDM9205, MSM8996AU, MSM8998, Nicobar, QCS405, QCS605, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SDX24, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin
Scores
CVSS v3
7.8
EPSS
0.0010
EPSS Percentile
26.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-787
Status
published
Products (27)
qualcomm/apq8016_firmware
qualcomm/apq8096au_firmware
qualcomm/apq8098_firmware
qualcomm/mdm9205_firmware
qualcomm/msm8996au_firmware
qualcomm/msm8998_firmware
qualcomm/nicobar_firmware
qualcomm/qcs405_firmware
qualcomm/qcs605_firmware
qualcomm/sa6155p_firmware
... and 17 more
Published
Nov 21, 2019
Tracked Since
Feb 18, 2026