QwikSec

Security Database

CVE

CWE

Training

CVE-2018-19860

Published: Jun 7, 2019

Modified: Aug 5, 2024

PUBLISHED

Description

Broadcom firmware before summer 2014 on Nexus 5 BCM4335C0 2012-12-11, Raspberry Pi 3 BCM43438A1 2014-06-02, and unspecifed other devices does not properly restrict LMP commnds and executes certain memory contents upon receiving an LMP command, as demonstrated by executing an HCI command.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.broadcom.com/support/resources/product-security-center

x_refsource_MISC

https://source.android.com/security/bulletin/2019-05-01

x_refsource_CONFIRM

https://support.apple.com/kb/HT210348

x_refsource_CONFIRM

20190723 APPLE-SA-2019-7-22-2 macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra

mailing-list

x_refsource_FULLDISC

20190814 APPLE-SA-2019-8-13-1 Additional information for APPLE-SA-2019-7-22-2 macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra

mailing-list

x_refsource_BUGTRAQ

20190816 APPLE-SA-2019-8-13-1 Additional information for APPLE-SA-2019-7-22-2 macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra

mailing-list

x_refsource_FULLDISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.