CVE-2019-14111: Buffer Overflow
First published: Mon Apr 06 2020(Updated: )
Possible buffer overflow while handling NAN reception of NMF in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, Rennell, SC7180, SC8180X, SM6150, SM7150, SM8150, SXR2130
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Google Android | ||
| Google Android | ||
| Qualcomm Ipq6018 | ||
| Qualcomm Ipq8074 Firmware | ||
| Qualcomm Ipq8074 | ||
| Google Android | ||
| Qualcomm Nicobar | ||
| Qualcomm Qca6390 Firmware | ||
| Qualcomm Qca6390 | ||
| Qualcomm Qca8081 Firmware | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Qcs404 Firmware | ||
| Google Android | ||
| Qualcomm Qcs405 Firmware | ||
| Qualcomm Qcs405 | ||
| Qualcomm Rennell Firmware | ||
| Google Android | ||
| Google Android | ||
| Google Android | ||
| Qualcomm Sc8180x Firmware | ||
| Qualcomm Sc8180x | ||
| Qualcomm Sm6150 Firmware | ||
| Qualcomm Sm6150 | ||
| Qualcomm Sm7150 Firmware | ||
| Qualcomm Sm7150 | ||
| Qualcomm Sm8150 Firmware | ||
| Qualcomm Sm8150 | ||
| Qualcomm Sxr2130 Firmware | ||
| Qualcomm Sxr2130 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2019-14111?
CVE-2019-14111 is a vulnerability that could lead to a buffer overflow while handling NAN reception of NMF in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in IPQ6018, IPQ8074, Nicobar, QCA6390, QCA8081, QCN7605, QCS404, QCS405, Rennell, SC7180, SC8180x, Sm6150, Sm7150, Sm8150, and Sxr2130.
What is the severity of CVE-2019-14111?
CVE-2019-14111 has a severity rating of 9.8 out of 10, which is considered critical.
Which software is affected by CVE-2019-14111?
The software affected by CVE-2019-14111 includes Google Android, Qualcomm IPQ6018 Firmware, Qualcomm IPQ8074 Firmware, Qualcomm Nicobar Firmware, Qualcomm QCA6390 Firmware, Qualcomm QCA8081 Firmware, Qualcomm QCN7605 Firmware, Qualcomm QCS404 Firmware, Qualcomm QCS405 Firmware, Qualcomm Rennell Firmware, Qualcomm SC7180 Firmware, Qualcomm SC8180x Firmware, Qualcomm Sm6150 Firmware, Qualcomm Sm7150 Firmware, Qualcomm Sm8150 Firmware, and Qualcomm Sxr2130 Firmware.
How can I fix CVE-2019-14111?
To fix CVE-2019-14111, you should apply the patches or updates provided by the software vendor, such as Qualcomm or Google, as soon as they are available.
How can I get more information about CVE-2019-14111?
You can find more information about CVE-2019-14111 on the Qualcomm website and the Android Security Bulletin for April 2020.
- agent/type
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/author
- agent/severity
- agent/weakness
- agent/references
- agent/softwarecombine
- agent/description
- agent/event
- collector/android-source
- source/Android
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/qualcomm
- canonical/google android
- canonical/qualcomm ipq6018
- canonical/qualcomm ipq8074 firmware
- canonical/qualcomm ipq8074
- canonical/qualcomm nicobar
- canonical/qualcomm qca6390 firmware
- canonical/qualcomm qca6390
- canonical/qualcomm qca8081 firmware
- canonical/qualcomm qcs404 firmware
- canonical/qualcomm qcs405 firmware
- canonical/qualcomm qcs405
- canonical/qualcomm rennell firmware
- canonical/qualcomm sc8180x firmware
- canonical/qualcomm sc8180x
- canonical/qualcomm sm6150 firmware
- canonical/qualcomm sm6150
- canonical/qualcomm sm7150 firmware
- canonical/qualcomm sm7150
- canonical/qualcomm sm8150 firmware
- canonical/qualcomm sm8150
- canonical/qualcomm sxr2130 firmware
- canonical/qualcomm sxr2130
- vendor/google