Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2019-14092

System Services exports services without permission protect and can lead to information exposure in Snapdragon Industrial IOT, Snapdragon Mobile in MDM9206, MDM9207C, MDM9607, Rennell, Saipan, SM8150, SM8250, SXR2130

Published

2020-06-22T07:15:11.710

Last Modified

2024-11-21T04:26:04.457

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.5 (MEDIUM)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

  • Access Vector: LOCAL
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: PARTIAL
  • Integrity Impact: NONE
  • Availability Impact: NONE
Exploitability Score

3.9

Impact Score

2.9

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System qualcomm mdm9206_firmware - Yes
Hardware qualcomm mdm9206 - No
Operating System qualcomm mdm9207c_firmware - Yes
Hardware qualcomm mdm9207c - No
Operating System qualcomm mdm9607_firmware - Yes
Hardware qualcomm mdm9607 - No
Operating System qualcomm rennell_firmware - Yes
Hardware qualcomm rennell - No
Operating System qualcomm saipan_firmware - Yes
Hardware qualcomm saipan - No
Operating System qualcomm sm8150_firmware - Yes
Hardware qualcomm sm8150 - No
Operating System qualcomm sm8250_firmware - Yes
Hardware qualcomm sm8250 - No
Operating System qualcomm sxr2130_firmware - Yes
Hardware qualcomm sxr2130 - No
References