What is the severity of CVE-2019-14085?

CVE-2019-14085 is classified as a high-severity vulnerability due to possible integer underflow in WLAN functions.

What systems are affected by CVE-2019-14085?

CVE-2019-14085 affects several Qualcomm chipsets including QCN7605, QCS605, SDA845, and SDM series.

How do I fix CVE-2019-14085?

To address CVE-2019-14085, ensure that the firmware for affected Qualcomm devices is updated to the latest version.

What is the exploit method for CVE-2019-14085?

CVE-2019-14085 can be exploited through a lack of validation for data received from user space in WLAN functions.

Is CVE-2019-14085 specific to any mobile operating systems?

CVE-2019-14085 particularly impacts devices running the Android operating system that utilize vulnerable Qualcomm chipsets.

Vulnerability/
CVE-2019-14085

high

7.8

CWE

191

2/3/2020

5/3/2020

26/8/2024

CVE-2019-14085: Integer Underflow

First published: Mon Mar 02 2020(Updated: )

Possible Integer underflow in WLAN function due to lack of check of data received from user side in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in QCN7605, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM8150, SXR1130

Credit: product-security@qualcomm.com

Affected Software	Affected Version	How to fix
Google Android
qualcomm qcn7605 Firmware
qualcomm qcn7605
Qualcomm QCS605 firmware
Qualcomm QCS605
qualcomm sda845 firmware
qualcomm sda845
qualcomm sdm670 firmware
qualcomm sdm670
qualcomm sdm710 firmware
qualcomm sdm710
qualcomm SDM845 firmware
qualcomm SDM845
qualcomm sdm850 firmware
qualcomm sdm850
qualcomm SM8150 firmware
qualcomm SM8150
Qualcomm SXR1130 Firmware
Qualcomm SXR1130

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2019-14085?
CVE-2019-14085 is classified as a high-severity vulnerability due to possible integer underflow in WLAN functions.
What systems are affected by CVE-2019-14085?
CVE-2019-14085 affects several Qualcomm chipsets including QCN7605, QCS605, SDA845, and SDM series.
How do I fix CVE-2019-14085?
To address CVE-2019-14085, ensure that the firmware for affected Qualcomm devices is updated to the latest version.
What is the exploit method for CVE-2019-14085?
CVE-2019-14085 can be exploited through a lack of validation for data received from user space in WLAN functions.
Is CVE-2019-14085 specific to any mobile operating systems?
CVE-2019-14085 particularly impacts devices running the Android operating system that utilize vulnerable Qualcomm chipsets.

Frequently Asked Questions

What is the severity of CVE-2019-14085?
CVE-2019-14085 is classified as a high-severity vulnerability due to possible integer underflow in WLAN functions.
What systems are affected by CVE-2019-14085?
CVE-2019-14085 affects several Qualcomm chipsets including QCN7605, QCS605, SDA845, and SDM series.
How do I fix CVE-2019-14085?
To address CVE-2019-14085, ensure that the firmware for affected Qualcomm devices is updated to the latest version.
What is the exploit method for CVE-2019-14085?
CVE-2019-14085 can be exploited through a lack of validation for data received from user space in WLAN functions.
Is CVE-2019-14085 specific to any mobile operating systems?
CVE-2019-14085 particularly impacts devices running the Android operating system that utilize vulnerable Qualcomm chipsets.

CVE-2019-14085: Integer Underflow

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2019-14085?

What systems are affected by CVE-2019-14085?

How do I fix CVE-2019-14085?

What is the exploit method for CVE-2019-14085?

Is CVE-2019-14085 specific to any mobile operating systems?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2019-14085?

What systems are affected by CVE-2019-14085?

How do I fix CVE-2019-14085?

What is the exploit method for CVE-2019-14085?

Is CVE-2019-14085 specific to any mobile operating systems?