cve/2019/CVE-2019-10546.md

### [CVE-2019-10546](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10546)
![](https://img.shields.io/static/v1?label=Product&message=Snapdragon%20Auto%2C%20Snapdragon%20Compute%2C%20Snapdragon%20Connectivity%2C%20Snapdragon%20Consumer%20Electronics%20Connectivity%2C%20Snapdragon%20Consumer%20IOT%2C%20Snapdragon%20Industrial%20IOT%2C%20Snapdragon%20Mobile%2C%20Snapdragon%20Wired%20Infrastructure%20and%20Networking&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=APQ8096%2C%20APQ8096AU%2C%20IPQ6018%2C%20IPQ8074%2C%20MDM9607%2C%20MDM9640%2C%20MDM9650%2C%20MSM8996AU%2C%20Nicobar%2C%20QCA6174A%2C%20QCA6574%2C%20QCA6574AU%2C%20QCA6584%2C%20QCA6584AU%2C%20QCA8081%2C%20QCA9377%2C%20QCA9379%2C%20QCS404%2C%20QCS605%2C%20Rennell%2C%20SA6155P%2C%20SC8180X%2C%20SDA660%2C%20SDA845%2C%20SDM630%2C%20SDM636%2C%20SDM660%2C%20SDM670%2C%20SDM710%2C%20SDM845%2C%20SDM850%2C%20SM6150%2C%20SM7150%2C%20SM8150%2C%20SM8250%2C%20SXR1130%2C%20SXR2130%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Buffer%20Copy%20Without%20Checking%20Size%20of%20Input%20in%20WLAN&color=brightgreen)

### Description

Buffer overflow can occur in WLAN firmware while parsing beacon/probe_response frames during roaming in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in APQ8096, APQ8096AU, IPQ6018, IPQ8074, MDM9607, MDM9640, MDM9650, MSM8996AU, Nicobar, QCA6174A, QCA6574, QCA6574AU, QCA6584, QCA6584AU, QCA8081, QCA9377, QCA9379, QCS404, QCS605, Rennell, SA6155P, SC8180X, SDA660, SDA845, SDM630, SDM636, SDM660, SDM670, SDM710, SDM845, SDM850, SM6150, SM7150, SM8150, SM8250, SXR1130, SXR2130

### POC

#### Reference
- https://www.qualcomm.com/company/product-security/bulletins/march-2020-bulletin

#### Github
No PoCs found on GitHub currently.