CVE-2019-14134
First published: Mon Apr 06 2020(Updated: )
Possible out of bound access in WLAN handler when the received value of length in rx path is shorter than the expected value of country IE in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ8074, QCA8081, QCS605, SDA845, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SXR1130
Credit: product-security@qualcomm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Google Android | ||
| Qualcomm Ipq8074 Firmware | ||
| Qualcomm Ipq8074 | ||
| Qualcomm Qca8081 Firmware | ||
| Google Android | ||
| Qualcomm Qcs605 Firmware | ||
| Google Android | ||
| Qualcomm Sda845 Firmware | ||
| Qualcomm Sda845 | ||
| Qualcomm Sdm670 Firmware | ||
| Qualcomm Sdm670 | ||
| Qualcomm Sdm710 Firmware | ||
| Qualcomm Sdm710 | ||
| Qualcomm Sdm845 Firmware | ||
| Qualcomm Sdm845 | ||
| Qualcomm Sdm850 Firmware | ||
| Qualcomm Sdm850 | ||
| Qualcomm Sm6150 Firmware | ||
| Qualcomm Sm6150 | ||
| Qualcomm Sm7150 Firmware | ||
| Qualcomm Sm7150 | ||
| Qualcomm Sm8150 Firmware | ||
| Qualcomm Sm8150 | ||
| Qualcomm Sxr1130 Firmware | ||
| Qualcomm Sxr1130 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this vulnerability?
The vulnerability ID of this vulnerability is CVE-2019-14134.
What is the severity of CVE-2019-14134?
The severity of CVE-2019-14134 is critical with a severity value of 9.8.
Which software is affected by CVE-2019-14134?
The software affected by CVE-2019-14134 includes Qualcomm Ipq8074 Firmware, Qualcomm Qca8081 Firmware, Qualcomm Qcs605 Firmware, Qualcomm Sda845 Firmware, Qualcomm Sdm670 Firmware, Qualcomm Sdm710 Firmware, Qualcomm Sdm845 Firmware, Qualcomm Sdm850 Firmware, Qualcomm Sm6150 Firmware, Qualcomm Sm7150 Firmware, Qualcomm Sm8150 Firmware, and Qualcomm Sxr1130 Firmware.
How can I fix CVE-2019-14134?
To fix CVE-2019-14134, it is recommended to update the firmware of the affected devices with the latest patches provided by Qualcomm.
Where can I find more information about CVE-2019-14134?
More information about CVE-2019-14134 can be found on the Qualcomm website and the Android Security Bulletin for April 2020.
- agent/type
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/author
- agent/severity
- agent/weakness
- agent/references
- agent/softwarecombine
- agent/description
- agent/event
- collector/android-source
- source/Android
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/qualcomm
- canonical/qualcomm ipq8074 firmware
- canonical/qualcomm ipq8074
- canonical/qualcomm qca8081 firmware
- canonical/google android
- canonical/qualcomm qcs605 firmware
- canonical/qualcomm sda845 firmware
- canonical/qualcomm sda845
- canonical/qualcomm sdm670 firmware
- canonical/qualcomm sdm670
- canonical/qualcomm sdm710 firmware
- canonical/qualcomm sdm710
- canonical/qualcomm sdm845 firmware
- canonical/qualcomm sdm845
- canonical/qualcomm sdm850 firmware
- canonical/qualcomm sdm850
- canonical/qualcomm sm6150 firmware
- canonical/qualcomm sm6150
- canonical/qualcomm sm7150 firmware
- canonical/qualcomm sm7150
- canonical/qualcomm sm8150 firmware
- canonical/qualcomm sm8150
- canonical/qualcomm sxr1130 firmware
- canonical/qualcomm sxr1130
- vendor/google