What is CVE-2019-10533?

CVE-2019-10533 is a critical-severity vulnerability in Qualcomm Mdm9206, classified under Improper Validation of Array Index. CVSS score: 9.8/10. Published 2019-11-06.

How severe is CVE-2019-10533?

Critical severity. CVSS v3 base score is 9.8 out of 10.

Vulnerability in Qualcomm Mdm9206

CVE-2019-10533

Out of bound access due to improper validation of array index cause the index table entry to get corrupt in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Musi…

EPSS: 0.009 (55.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 9.8 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Qualcomm Mdm9206
Qualcomm Mdm9206_firmware
Qualcomm Mdm9607
Qualcomm Mdm9607_firmware
Qualcomm Msm8909w
Qualcomm Msm8909w_firmware
Qualcomm Msm8996au
Qualcomm Msm8996au_firmware
Qualcomm Qca6574au
Qualcomm Qca6574au_firmware

Weakness classification (CWE)

CWE-129 — Improper Validation of Array Index

References

product-security@qualcomm.com (x_refsource_CONFIRM, Vendor Advisory)

Frequently asked questions

What is CVE-2019-10533?: CVE-2019-10533 is a critical-severity vulnerability in Qualcomm Mdm9206, classified under Improper Validation of Array Index. CVSS score: 9.8/10. Published 2019-11-06.
How severe is CVE-2019-10533?: Critical severity. CVSS v3 base score is 9.8 out of 10.