CVE-2019-20549
Severity CVSS v4.0:
Pending analysis
Type:
CWE-125
Out-of-bounds Read
Publication date:
24/03/2020
Last modified:
24/08/2020
Description
An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) (Broadcom chipsets) software. A heap out-of-bounds access can occur during LE Packet reception in Broadcom Bluetooth. The Samsung ID is SVE-2019-15724 (November 2019).
Impact
Base Score 3.x
9.80
Severity 3.x
CRITICAL
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:google:android:7.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:7.1.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:7.1.1:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:7.1.2:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:8.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:8.1:*:*:*:*:*:*:* | ||
| cpe:2.3:o:google:android:9.0:*:*:*:*:*:*:* | ||
| cpe:2.3:h:broadcom:bcm43162:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:broadcom:bcm43224:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:broadcom:bcm4323:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:broadcom:bcm43684:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:broadcom:bcm43694:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:broadcom:bcm47622:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:broadcom:bcm6710:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:broadcom:bcm6750:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page