CVE-2018-19860 - OpenCVE

Broadcom firmware before summer 2014 on Nexus 5 BCM4335C0 2012-12-11, Raspberry Pi 3 BCM43438A1 2014-06-02, and unspecifed other devices does not properly restrict LMP commnds and executes certain memory contents upon receiving an LMP command, as demonstrated by executing an HCI command.

No CVSS v4.0

No CVSS v3.1

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:A/AC:L/Au:N/C:P/I:P/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Broadcom	Bcm4335c0 Bcm4335c0 Firmware Bcm43438a1 Bcm43438a1 Firmware
Cypress	Cyw20702a1kwfbg Cyw20702a1kwfbg Firmware Cyw20702a1kwfbgt Cyw20702a1kwfbgt Firmware Cyw20702b0kwfbg Cyw20702b0kwfbg Firmware Cyw20702b0kwfbgt Cyw20702b0kwfbgt Firmware Cyw20703ua1kffb1g Cyw20703ua1kffb1g Firmware Cyw20703ua1kffb1gt Cyw20703ua1kffb1gt Firmware Cyw20704ua1kffb1g Cyw20704ua1kffb1g Firmware Cyw20704ua1kffb1gt Cyw20704ua1kffb1gt Firmware Cyw20704ua2kffb1g Cyw20704ua2kffb1g Firmware Cyw20704ua2kffb1gt Cyw20704ua2kffb1gt Firmware Cyw20705a1kwfbgt Cyw20705a1kwfbgt Firmware Cyw20705b0kwfbg Cyw20705b0kwfbg Firmware Cyw20705b0kwfbgt Cyw20705b0kwfbgt Firmware Cyw20706ua1kffb1g Cyw20706ua1kffb1g Firmware Cyw20706ua1kffb1gt Cyw20706ua1kffb1gt Firmware Cyw20706ua1kffb4g Cyw20706ua1kffb4g Firmware Cyw20706ua2kffb4g Cyw20706ua2kffb4g Firmware Cyw20706ua2kffb4gt Cyw20706ua2kffb4gt Firmware Cyw20707a2kubgt Cyw20707a2kubgt Firmware Cyw20707ua1kffb1g Cyw20707ua1kffb1g Firmware Cyw20707ua1kffb4g Cyw20707ua1kffb4g Firmware Cyw20707ua1kffb4gt Cyw20707ua1kffb4gt Firmware Cyw20707ua2kffb4g Cyw20707ua2kffb4g Firmware Cyw20707ua2kffb4gt Cyw20707ua2kffb4gt Firmware Cyw20707va1pkwbgt Cyw20707va1pkwbgt Firmware Cyw20707va2pkwbgt Cyw20707va2pkwbgt Firmware Cyw20730a1kfbg Cyw20730a1kfbg Firmware Cyw20730a1kfbgt Cyw20730a1kfbgt Firmware Cyw20730a1kml2g Cyw20730a1kml2g Firmware Cyw20730a1kml2gt Cyw20730a1kml2gt Firmware Cyw20730a1kmlg Cyw20730a1kmlg Firmware Cyw20730a1kmlgt Cyw20730a1kmlgt Firmware Cyw20730a2kfbg Cyw20730a2kfbg Firmware Cyw20730a2kfbgt Cyw20730a2kfbgt Firmware Cyw20730a2kml2g Cyw20730a2kml2g Firmware Cyw20730a2kml2gt Cyw20730a2kml2gt Firmware Cyw20733a1kfb1gt Cyw20733a1kfb1gt Firmware Cyw20733a2kfb1g Cyw20733a2kfb1g Firmware Cyw20733a2kfb1gt Cyw20733a2kfb1gt Firmware Cyw20733a2kml1g Cyw20733a2kml1g Firmware Cyw20733a2kml1gt Cyw20733a2kml1gt Firmware Cyw20733a3kfb1g Cyw20733a3kfb1g Firmware Cyw20733a3kfb1gt Cyw20733a3kfb1gt Firmware Cyw20733a3kfb2gt Cyw20733a3kfb2gt Firmware Cyw20733a3kml1g Cyw20733a3kml1g Firmware Cyw20733a3kml1gt Cyw20733a3kml1gt Firmware Cyw20734ua1kffb3g Cyw20734ua1kffb3g Firmware Cyw20734ua1kffb3gt Cyw20734ua1kffb3gt Firmware Cyw20734ua2kffb3g Cyw20734ua2kffb3g Firmware Cyw20734ua2kffb3gt Cyw20734ua2kffb3gt Firmware Cyw43438kubgt Cyw43438kubgt Firmware Cyw4343w1kubgt Cyw4343w1kubgt Firmware Cyw4343wkubgt Cyw4343wkubgt Firmware Cyw4343wkwbgt Cyw4343wkwbgt Firmware Cyw4354kkwbgt Cyw4354kkwbgt Firmware Cyw4354xkubgt Cyw4354xkubgt Firmware Cyw89071a1cubxgt Cyw89071a1cubxgt Firmware Cyw89072brfb5g Cyw89072brfb5g Firmware Cyw89072brfb5gt Cyw89072brfb5gt Firmware Cyw89335l2cubgt Cyw89335l2cubgt Firmware Cyw89335lcubgt Cyw89335lcubgt Firmware

Configuration 1 [-]

AND

cpe:2.3:o:broadcom:bcm4335c0_firmware:2012-12-11:*:*:*:*:*:*:*

cpe:2.3:h:broadcom:bcm4335c0:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:broadcom:bcm43438a1_firmware:2014-06-02:*:*:*:*:*:*:*

cpe:2.3:h:broadcom:bcm43438a1:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:cypress:cyw20702a1kwfbg_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20702a1kwfbg:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:cypress:cyw20702a1kwfbgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20702a1kwfbgt:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:cypress:cyw20702b0kwfbg_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20702b0kwfbg:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:cypress:cyw20702b0kwfbgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20702b0kwfbgt:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:cypress:cyw20703ua1kffb1g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20703ua1kffb1g:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:cypress:cyw20703ua1kffb1gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20703ua1kffb1gt:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:cypress:cyw20704ua1kffb1g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20704ua1kffb1g:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:cypress:cyw20704ua1kffb1gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20704ua1kffb1gt:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:cypress:cyw20704ua2kffb1g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20704ua2kffb1g:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:cypress:cyw20704ua2kffb1gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20704ua2kffb1gt:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:cypress:cyw20705a1kwfbgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20705a1kwfbgt:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:cypress:cyw20705b0kwfbg_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20705b0kwfbg:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:cypress:cyw20705b0kwfbgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20705b0kwfbgt:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:cypress:cyw20706ua1kffb1g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20706ua1kffb1g:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:cypress:cyw20706ua1kffb1gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20706ua1kffb1gt:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:cypress:cyw20706ua1kffb4g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20706ua1kffb4g:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:cypress:cyw20706ua2kffb4g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20706ua2kffb4g:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:cypress:cyw20706ua2kffb4gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20706ua2kffb4gt:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:cypress:cyw20707a2kubgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20707a2kubgt:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:cypress:cyw20707ua1kffb1g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20707ua1kffb1g:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:cypress:cyw20707ua1kffb4g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20707ua1kffb4g:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:cypress:cyw20707ua1kffb4gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20707ua1kffb4gt:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:cypress:cyw20707ua2kffb4g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20707ua2kffb4g:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:cypress:cyw20707ua2kffb4gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20707ua2kffb4gt:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:cypress:cyw20707va1pkwbgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20707va1pkwbgt:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:o:cypress:cyw20707va2pkwbgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20707va2pkwbgt:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

cpe:2.3:o:cypress:cyw20730a1kfbg_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20730a1kfbg:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:o:cypress:cyw20730a1kfbgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20730a1kfbgt:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:o:cypress:cyw20730a1kml2g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20730a1kml2g:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND

cpe:2.3:o:cypress:cyw20730a1kml2gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20730a1kml2gt:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND

cpe:2.3:o:cypress:cyw20730a1kmlg_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20730a1kmlg:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND

cpe:2.3:o:cypress:cyw20730a1kmlgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20730a1kmlgt:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND

cpe:2.3:o:cypress:cyw20730a2kfbg_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20730a2kfbg:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND

cpe:2.3:o:cypress:cyw20730a2kfbgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20730a2kfbgt:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND

cpe:2.3:o:cypress:cyw20730a2kml2g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20730a2kml2g:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND

cpe:2.3:o:cypress:cyw20730a2kml2gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20730a2kml2gt:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND

cpe:2.3:o:cypress:cyw20733a1kfb1gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20733a1kfb1gt:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND

cpe:2.3:o:cypress:cyw20733a2kfb1g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20733a2kfb1g:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND

cpe:2.3:o:cypress:cyw20733a2kfb1gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20733a2kfb1gt:-:*:*:*:*:*:*:*

Configuration 42 [-]

AND

cpe:2.3:o:cypress:cyw20733a2kml1g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20733a2kml1g:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND

cpe:2.3:o:cypress:cyw20733a2kml1gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20733a2kml1gt:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND

cpe:2.3:o:cypress:cyw20733a3kfb1g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20733a3kfb1g:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND

cpe:2.3:o:cypress:cyw20733a3kfb1gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20733a3kfb1gt:-:*:*:*:*:*:*:*

Configuration 46 [-]

AND

cpe:2.3:o:cypress:cyw20733a3kfb2gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20733a3kfb2gt:-:*:*:*:*:*:*:*

Configuration 47 [-]

AND

cpe:2.3:o:cypress:cyw20733a3kml1g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20733a3kml1g:-:*:*:*:*:*:*:*

Configuration 48 [-]

AND

cpe:2.3:o:cypress:cyw20733a3kml1gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20733a3kml1gt:-:*:*:*:*:*:*:*

Configuration 49 [-]

AND

cpe:2.3:o:cypress:cyw20734ua1kffb3g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20734ua1kffb3g:-:*:*:*:*:*:*:*

Configuration 50 [-]

AND

cpe:2.3:o:cypress:cyw20734ua1kffb3gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20734ua1kffb3gt:-:*:*:*:*:*:*:*

Configuration 51 [-]

AND

cpe:2.3:o:cypress:cyw20734ua2kffb3g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20734ua2kffb3g:-:*:*:*:*:*:*:*

Configuration 52 [-]

AND

cpe:2.3:o:cypress:cyw20734ua2kffb3gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw20734ua2kffb3gt:-:*:*:*:*:*:*:*

Configuration 53 [-]

AND

cpe:2.3:o:cypress:cyw43438kubgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw43438kubgt:-:*:*:*:*:*:*:*

Configuration 54 [-]

AND

cpe:2.3:o:cypress:cyw4343w1kubgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw4343w1kubgt:-:*:*:*:*:*:*:*

Configuration 55 [-]

AND

cpe:2.3:o:cypress:cyw4343wkubgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw4343wkubgt:-:*:*:*:*:*:*:*

Configuration 56 [-]

AND

cpe:2.3:o:cypress:cyw4343wkwbgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw4343wkwbgt:-:*:*:*:*:*:*:*

Configuration 57 [-]

AND

cpe:2.3:o:cypress:cyw4354kkwbgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw4354kkwbgt:-:*:*:*:*:*:*:*

Configuration 58 [-]

AND

cpe:2.3:o:cypress:cyw4354xkubgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw4354xkubgt:-:*:*:*:*:*:*:*

Configuration 59 [-]

AND

cpe:2.3:o:cypress:cyw89071a1cubxgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw89071a1cubxgt:-:*:*:*:*:*:*:*

Configuration 60 [-]

AND

cpe:2.3:o:cypress:cyw89072brfb5g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw89072brfb5g:-:*:*:*:*:*:*:*

Configuration 61 [-]

AND

cpe:2.3:o:cypress:cyw89072brfb5gt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw89072brfb5gt:-:*:*:*:*:*:*:*

Configuration 62 [-]

AND

cpe:2.3:o:cypress:cyw89335l2cubgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw89335l2cubgt:-:*:*:*:*:*:*:*

Configuration 63 [-]

AND

cpe:2.3:o:cypress:cyw89335lcubgt_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cypress:cyw89335lcubgt:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://seclists.org/fulldisclosure/2019/Aug/11
http://seclists.org/fulldisclosure/2019/Jul/22
https://seclists.org/bugtraq/2019/Aug/21
https://source.android.com/security/bulletin/2019-05-01
https://support.apple.com/kb/HT210348
https://www.broadcom.com/support/resources/product-security-center

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-06-07T16:23:26

Updated: 2024-08-05T11:44:20.802Z

Reserved: 2018-12-05T00:00:00

Link: CVE-2018-19860

Vulnrichment

No data.

NVD

Status : Modified

Published: 2019-06-07T17:29:00.740

Modified: 2020-08-24T17:37:01.140

Link: CVE-2018-19860

Redhat

No data.

Metrics

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Metrics

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object