CVE-2019-2336

MEDIUM

Snapdragon Auto et al - Use After Free

Title source: llm
STIX 2.1

Description

Subsequent use of the CBO listener may result in further memory corruption due to use after free issue. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9205, QCS404, SDX55, SM6150, SM7150, SM8150, SXR2130

References (1)

Core 1
Core References

Scores

CVSS v3 5.5
EPSS 0.0012
EPSS Percentile 31.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-416 CWE-787
Status published
Products (7)
qualcomm/mdm9205_firmware
qualcomm/qcs404_firmware
qualcomm/sdx55_firmware
qualcomm/sm6150_firmware
qualcomm/sm7150_firmware
qualcomm/sm8150_firmware
qualcomm/sxr2130_firmware
Published Nov 21, 2019
Tracked Since Feb 18, 2026