What is the severity of CVE-2019-14076?

The severity of CVE-2019-14076 is high with a severity value of 7.8.

What is the affected software by CVE-2019-14076?

The affected software by CVE-2019-14076 includes Google Android and Qualcomm firmware versions.

How does CVE-2019-14076 occur?

CVE-2019-14076 occurs due to a buffer overflow while processing a subsample data length out of range.

Does CVE-2019-14076 require user input validation?

CVE-2019-14076 lacks user input validation, leading to the vulnerability.

Where can I find more information about CVE-2019-14076?

You can find more information about CVE-2019-14076 in the official Android security bulletin and Qualcomm advisory.

Vulnerability/
CVE-2019-14076

high

7.8

CWE

120 119 20

1/6/2020

22/6/2020

5/8/2024

CVE-2019-14076: Buffer Overflow

First published: Mon Jun 01 2020(Updated: )

Buffer overflow occurs while processing an subsample data length out of range due to lack of user input validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8098, Kamorta, MDM9150, MDM9205, MDM9206, MDM9607, MDM9650, MSM8905, MSM8909, MSM8998, Nicobar, QCS404, QCS405, QCS605, Rennell, SA415M, SC7180, SC8180X, SDA845, SDM670, SDM710, SDM845, SDM850, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Google Android
Qualcomm apq8009 firmware
Qualcomm apq8009
qualcomm APQ8098 firmware
qualcomm APQ8098
qualcomm Kamorta firmware
qualcomm Kamorta
Qualcomm MDM9150 firmware
Qualcomm MDM9150
Qualcomm 9205 Firmware
Qualcomm 9205
Qualcomm MDM9206 firmware
Qualcomm MDM9206
Qualcomm MDM9607 firmware
Qualcomm MDM9607
Qualcomm MDM9650 firmware
Qualcomm MDM9650
qualcomm MSM8905 firmware
qualcomm MSM8905
Qualcomm MSM8909W
Qualcomm MSM8909W
qualcomm MSM8998 firmware
Qualcomm MSM8998
qualcomm Nicobar firmware
qualcomm Nicobar
qualcomm QCS404 firmware
qualcomm QCS404
Qualcomm QCS405 Firmware
Qualcomm QCS405 Firmware
Qualcomm QCS605 firmware
Qualcomm QCS605
qualcomm Rennell firmware
qualcomm Rennell
Qualcomm sa415m firmware
Qualcomm sa415m
Qualcomm SC7180P Firmware
Qualcomm SC7180P Firmware
qualcomm SC8180X firmware
qualcomm SC8180X
qualcomm sda845 firmware
qualcomm sda845
qualcomm sdm670 firmware
qualcomm sdm670
qualcomm sdm710 firmware
qualcomm sdm710
qualcomm SDM845 firmware
qualcomm SDM845
qualcomm sdm850 firmware
qualcomm sdm850
Qualcomm sdx24 firmware
Qualcomm sdx24
Qualcomm sdx55 firmware
Qualcomm sdx55
Qualcomm SM6150
Qualcomm SM6150 Firmware
Qualcomm SM7150 Firmware
qualcomm SM7150 firmware
qualcomm SM8150 firmware
qualcomm SM8150
qualcomm SM8250 firmware
Qualcomm SM8250
Qualcomm SXR1130 Firmware
Qualcomm SXR1130
qualcomm SXR2130 firmware
qualcomm SXR2130

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2019-14076?
The severity of CVE-2019-14076 is high with a severity value of 7.8.
What is the affected software by CVE-2019-14076?
The affected software by CVE-2019-14076 includes Google Android and Qualcomm firmware versions.
How does CVE-2019-14076 occur?
CVE-2019-14076 occurs due to a buffer overflow while processing a subsample data length out of range.
Does CVE-2019-14076 require user input validation?
CVE-2019-14076 lacks user input validation, leading to the vulnerability.
Where can I find more information about CVE-2019-14076?
You can find more information about CVE-2019-14076 in the official Android security bulletin and Qualcomm advisory.