Information disclosure issue occurs as there is no binding between the secure keypad session and the secure display session that allows user to take control of the REE to stop the secure keypad session and read the keypad input. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, MSM8905, MSM8909
References
Link | Resource |
---|---|
https://www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: qualcomm
Published: 2020-04-16T10:46:04
Updated: 2020-04-16T10:46:04
Reserved: 2019-03-29T00:00:00
Link: CVE-2019-10608
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-04-16T11:15:13.650
Modified: 2020-08-24T17:37:01.140
Link: CVE-2019-10608
JSON object: View
Redhat Information
No data.
CWE