{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-04T00:22:17.386","vulnerabilities":[{"cve":{"id":"CVE-2018-13914","sourceIdentifier":"product-security@qualcomm.com","published":"2019-02-25T22:29:02.853","lastModified":"2024-11-21T03:48:19.827","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Lack of input validation for data received from user space can lead to an out of bound array issue in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in version MDM9150, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 636, SD 820A, SD 835, SDM630, SDM660, SDX20."},{"lang":"es","value":"La falta de validación de entradas para los datos recibidos del espacio de usuario puede conducir a un problema de array fuera de límites en Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile y Snapdragon Wearables en versiones MDM9150, MDM9206, MDM9607, MDM9650, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 636, SD 820A, SD 835, SDM630, SDM660 y SDX20."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:P/I:P/A:P","baseScore":4.6,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":3.9,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-119"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:snapdragon_auto_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"DD6A118C-2EAD-40D4-B42B-6734362A644B"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:snapdragon_auto:-:*:*:*:*:*:*:*","matchCriteriaId":"721E2FF0-E060-459C-BF23-44DF21A2482B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:snapdragon_consumer_internet_of_things_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"798318A3-7DA4-464B-BAC7-4F7C160B06C0"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:snapdragon_consumer_internet_of_things:-:*:*:*:*:*:*:*","matchCriteriaId":"02878012-54CE-4972-8366-4DFC02F31BD3"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:snapdragon_industrial_internet_of_things_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"DD7F0806-5270-4E67-B17D-A49A0D1A8563"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:snapdragon_industrial_internet_of_things:-:*:*:*:*:*:*:*","matchCriteriaId":"20522339-3109-4772-AE21-F98FD13CFD24"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:mdm9150_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"4E2F2D26-2833-45A4-81F0-8E9F338C1E13"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:mdm9150:-:*:*:*:*:*:*:*","matchCriteriaId":"4EB171B1-D163-4801-A241-8DD7193A5DCB"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:mdm9206_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"A960B86A-C397-4ACB-AEE6-55F316D32949"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:mdm9206:-:*:*:*:*:*:*:*","matchCriteriaId":"D79B8959-3D1E-4B48-9181-D75FE90AAF98"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:mdm9607_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"A35FECFB-60AE-42A8-BCBB-FEA7D5826D49"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:mdm9607:-:*:*:*:*:*:*:*","matchCriteriaId":"E9765187-8653-4D66-B230-B2CE862AC5C0"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:mdm9650_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"35B7E25E-FA92-4C36-883C-CFF36F4B3507"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:mdm9650:-:*:*:*:*:*:*:*","matchCriteriaId":"ECD99C6F-2444-4A5E-A517-0C8023DDF23D"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:msm8909w_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"FE28A59C-7AA6-4B85-84E8-07852B96108E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:msm8909w:-:*:*:*:*:*:*:*","matchCriteriaId":"5DEE828B-09A7-4AC1-8134-491A7C87C118"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:msm8996au_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"8CA1E7B0-782B-4757-B118-802943798984"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:msm8996au:-:*:*:*:*:*:*:*","matchCriteriaId":"95CB08EC-AE12-4A54-AA3C-998F01FC8763"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sd_210_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"0FA80D57-3191-47CF-AD3F-9F2D64E443FE"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sd_210:-:*:*:*:*:*:*:*","matchCriteriaId":"B2AFB212-F01A-4CEB-8DB4-2E0CC2308CB6"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sd_212_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"E0986EF1-0974-488E-84C4-6880F876CE55"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sd_212:-:*:*:*:*:*:*:*","matchCriteriaId":"8C08BA58-2EBC-4A22-85A4-2ECD54693B9B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sd_205_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"27110478-4C08-49E6-BD53-8BAAD9D5BD65"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sd_205:-:*:*:*:*:*:*:*","matchCriteriaId":"3664D302-D22A-4B25-B534-3097AE2F8573"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sd_636_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"CE94E380-CB75-462E-B411-BF38F17D53B2"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sd_636:-:*:*:*:*:*:*:*","matchCriteriaId":"0947F38F-3DC2-45F1-B3B3-963922F32054"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sd_820a_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"E08016A2-E4FE-4E9C-A915-C66BE157AFB5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sd_820a:-:*:*:*:*:*:*:*","matchCriteriaId":"018452D0-007C-4740-B2AF-E5C8BBAC310F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sd_835_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"1CFF35A3-1472-4665-9DAB-1ABC45C0D5B4"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sd_835:-:*:*:*:*:*:*:*","matchCriteriaId":"F930E9BF-C502-49C6-8BE8-9A711B89FA1B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"8EA0D645-80F6-48C3-AF0D-99198ADC8778"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*","matchCriteriaId":"814FF3F3-CD5A-45A3-988C-6457D2CEB48C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sdm660_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"24D7B67C-6FEC-48F8-9D46-778E4528BC20"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sdm660:-:*:*:*:*:*:*:*","matchCriteriaId":"05006807-D961-446C-B8DC-C87507F1316E"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:qualcomm:sdx20_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"A0CE1B23-6FE3-41C4-B264-C7A9E8BDBEC1"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:qualcomm:sdx20:-:*:*:*:*:*:*:*","matchCriteriaId":"794BA13C-3C63-4695-AA45-676F85D904BE"}]}]}],"references":[{"url":"https://www.codeaurora.org/security-bulletin/2019/02/04/february-2019-code-aurora-security-bulletin","source":"product-security@qualcomm.com","tags":["Patch","Vendor Advisory"]},{"url":"https://www.codeaurora.org/security-bulletin/2019/02/04/february-2019-code-aurora-security-bulletin","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}}]}