CVE-2019-10596 Information
Feb 14, 2021
cve
Description
u’Improper access control can lead signed process to guess pid of other processes and access their address space’ in Snapdragon Auto Snapdragon Compute Snapdragon Connectivity Snapdragon Consumer IOT Snapdragon Industrial IOT Snapdragon Mobile Snapdragon Wired Infrastructure and Networking in Bitra Nicobar QCS605 QCS610 Rennell SA6155P Saipan SC7180 SC8180X SDM670 SDM710 SDM845 SDM850 SM6150 SM7150 SM8150 SM8250 SXR1130 SXR2130
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Reference
https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin
Attack Complexity
LOW
Privileges Required
LOW
User Interaction Required
LOW
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
HIGH
Availability Impact
HIGH
Base Score
HIGH
Base Severity
7.8
Share on: