Vulnerability Name: CVE-2019-10510 (CCN-168601) Assigned: 2019-08-05 Published: 2019-08-05 Updated: 2019-10-02 Summary: BT process died and BT toggled due to null pointer dereference when invalid vendor pass through command sent from remote in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Voice & Music in QCS405, QCS605, SD 636, SD 675, SD 730, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDM630, SDM660 CVSS v3 Severity: 8.2 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H 7.1 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H/E:U/RL:O/RC:C Exploitability Metrics: Attack Vector (AV): NetworkAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): NoneScope: Scope (S): UnchangedImpact Metrics: Confidentiality (C): NoneIntegrity (I): LowAvailibility (A): High
7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C Exploitability Metrics: Attack Vector (AV): NetworkAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): NoneScope: Scope (S): UnchangedImpact Metrics: Confidentiality (C): NoneIntegrity (I): NoneAvailibility (A): High
CVSS v2 Severity: 8.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:C Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): LowAuthentication (Au): NoneImpact Metrics: Confidentiality (C): NoneIntegrity (I): PartialAvailibility (A): Complete
7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C Exploitability Metrics: Access Vector (AV): NetworkAccess Complexity (AC): LowAthentication (Au): NoneImpact Metrics: Confidentiality (C): NoneIntegrity (I): NoneAvailibility (A): Complete
Vulnerability Type: CWE-476 Vulnerability Consequences: Denial of Service References: Source: MITRECVE-2019-10510 codeaurora-cve201910510-dos(168601) Code Aurora https://www.codeaurora.org/security-bulletin/2019/08/05/august-2019-code-aurora-security-bulletin Vulnerable Configuration: Configuration 1 :cpe:/o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:* AND cpe:/h:qualcomm:qcs405:-:*:*:*:*:*:*:* Configuration 2 :cpe:/o:qualcomm:qcs605_firmware:-:*:*:*:*:*:*:* AND cpe:/h:qualcomm:qcs605:-:*:*:*:*:*:*:* Configuration 3 :cpe:/o:qualcomm:sd_636_firmware:-:*:*:*:*:*:*:* AND cpe:/h:qualcomm:sd_636:-:*:*:*:*:*:*:* Configuration 4 :cpe:/o:qualcomm:sd_675_firmware:-:*:*:*:*:*:*:* AND cpe:/h:qualcomm:sd_675:-:*:*:*:*:*:*:* Configuration 5 :cpe:/o:qualcomm:sd_730_firmware:-:*:*:*:*:*:*:* AND cpe:/h:qualcomm:sd_730:-:*:*:*:*:*:*:* Configuration 6 :cpe:/o:qualcomm:sd_820a_firmware:-:*:*:*:*:*:*:* AND cpe:/h:qualcomm:sd_820a:-:*:*:*:*:*:*:* Configuration 7 :cpe:/o:qualcomm:sd_835_firmware:-:*:*:*:*:*:*:* AND cpe:/h:qualcomm:sd_835:-:*:*:*:*:*:*:* Configuration 8 :cpe:/o:qualcomm:sd_845_firmware:-:*:*:*:*:*:*:* AND cpe:/h:qualcomm:sd_845:-:*:*:*:*:*:*:* Configuration 9 :cpe:/o:qualcomm:sd_850_firmware:-:*:*:*:*:*:*:* AND cpe:/h:qualcomm:sd_850:-:*:*:*:*:*:*:* Configuration 10 :cpe:/o:qualcomm:sd_855_firmware:-:*:*:*:*:*:*:* AND cpe:/h:qualcomm:sd_855:-:*:*:*:*:*:*:* Configuration 11 :cpe:/o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:* AND cpe:/h:qualcomm:sdm630:-:*:*:*:*:*:*:* Configuration 12 :cpe:/o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:* AND cpe:/h:qualcomm:sdm660:-:*:*:*:*:*:*:* Configuration CCN 1 :cpe:/o:codeaurora:android-msm:2.6.29:*:*:*:*:*:*:* BACK
qualcomm qcs405 firmware -
qualcomm qcs405 -
qualcomm qcs605 firmware -
qualcomm qcs605 -
qualcomm sd 636 firmware -
qualcomm sd 636 -
qualcomm sd 675 firmware -
qualcomm sd 675 -
qualcomm sd 730 firmware -
qualcomm sd 730 -
qualcomm sd 820a firmware -
qualcomm sd 820a -
qualcomm sd 835 firmware -
qualcomm sd 835 -
qualcomm sd 845 firmware -
qualcomm sd 845 -
qualcomm sd 850 firmware -
qualcomm sd 850 -
qualcomm sd 855 firmware -
qualcomm sd 855 -
qualcomm sdm630 firmware -
qualcomm sdm630 -
qualcomm sdm660 firmware -
qualcomm sdm660 -
codeaurora android-msm 2.6.29
Denotes that component is vulnerable