TR-19-258 (Qualcomm Snapdragon Zafiyetleri)

Genel Bilgi

Qualcomm, Snapdragon işlemci kullanan mobil, IoT ve giyilebilir cihazlarda bulunan Hizmet Reddi zafiyetinlerini gidermek adına çıkardığı güncellemeri duyurdu.

Etki

Mevcut güvenlik açıklığı nedeniyle etkilenen sistemlerin siber saldırganlar tarafından kontrol altına alınması ihtimal dâhilindedir. İlgili zafiyetlerin kodları ile bildiniği ve son güncellemer ile giderildiği belirtildi. İlgili CVE kodları şöyledir; CVE-2019-10488, CVE-2019-10491, CVE-2019-10495, CVE-2019-10496, CVE-2019-10502, CVE-2019-10504, CVE-2019-10505, CVE-2019-10512, CVE-2019-10515, CVE-2019-10522, CVE-2019-10524, CVE-2019-10528, CVE-2019-10529, CVE-2019-10531, CVE-2019-10533, CVE-2019-10534, CVE-2019-10541, CVE-2019-10542, CVE-2019-10565, CVE-2019-16400, CVE-2019-16401, CVE-2019-2246, CVE-2019-2249, CVE-2019-2258, CVE-2019-2275, CVE-2018-13907, CVE-2019-2283, CVE-2019-2285, CVE-2019-2302, CVE-2019-2323, CVE-2019-2324, CVE-2019-2325, CVE-2019-2331 ve CVE-2019-2332 ;

Çözüm

Ulusal Siber Olaylara Müdahale Merkezi (USOM), kullanıcı ve sistem yöneticilerine yüksek önemde olduğu belirtilen zafiyet için Qualcomm Güvenlik Bildirimleri sayfasını incelemerini ve gerekli güncellemeri yapmalarını tavsiye etmektedir.

Kaynaklar

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10488

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10491

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10495

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10496

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10502

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10504

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10505

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10512

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10515

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10522

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10524

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10528

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10529

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10531

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10533

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10534

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10541

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10542

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-10565

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-16400

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-16401

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-2246

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-2249

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-2258

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-2275

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-2283

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-2285

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-2302

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-2323

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-2324

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-2325

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-2331

https://nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-2332

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-2331

2019-11-11