CVE-2019-2318

MEDIUM

Non Secure Kernel - DoS

Title source: llm

Description

Non Secure Kernel can cause Trustzone to do an arbitrary memory read which will result into DOS in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8017, APQ8053, APQ8096, APQ8096AU, IPQ8074, MSM8917, MSM8920, MSM8937, MSM8940, MSM8953, MSM8996, MSM8996AU, QCA8081, QM215, SDM429, SDM439, SDM450, SDM632, Snapdragon_High_Med_2016

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

https://www.qualcomm.com/company/product-security/bulletins/october-2019-bulletin

Scores

CVSS v3 5.5

EPSS 0.0011

EPSS Percentile 28.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-125

Status published

Products (19)

qualcomm/apq8017_firmware

qualcomm/apq8053_firmware

qualcomm/apq8096_firmware

qualcomm/apq8096au_firmware

qualcomm/ipq8074_firmware

qualcomm/msm8917_firmware

qualcomm/msm8920_firmware

qualcomm/msm8937_firmware

qualcomm/msm8940_firmware

qualcomm/msm8953_firmware

... and 9 more

Published Nov 21, 2019

Tracked Since Feb 18, 2026