Vulnerability CVE-2020-11140


Published: 2021-01-21

Description:
Out of bound memory access during music playback with ALAC modified content due to improper validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

Type:

CWE-787

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Qualcomm -> Sdm429w 
Qualcomm -> Pmi8998 
Qualcomm -> Sdx55 
Qualcomm -> Pmx55 
Qualcomm -> Smb1380 
Qualcomm -> Qca1990 
Qualcomm -> Wcd9335 
Qualcomm -> Qca6564 
Qualcomm -> Wcn3680b 
Qualcomm -> Qcm4290 
Qualcomm -> Whs9410 
Qualcomm -> Qdm3301 
Qualcomm -> Wtr5975 
Qualcomm -> Qet5100 
Qualcomm -> Qfe3320 
Qualcomm -> Qfs2580 
Qualcomm -> Qpa4340 
Qualcomm -> Csra6640 
Qualcomm -> Qpa8842 
Qualcomm -> Msm8610 
Qualcomm -> Qpm5875 
Qualcomm -> Pm439 
Qualcomm -> Qtc800s 
Qualcomm -> Pm670l 
Qualcomm -> Sd429 
Qualcomm -> Pm8150l 
Qualcomm -> Sd730 
Qualcomm -> Pm8952 
Qualcomm -> Sdm630 
Qualcomm -> Pmk7350 
Qualcomm -> Sdx55m 
Qualcomm -> Qat3514 
Qualcomm -> Smb1381 
Qualcomm -> Qca4020 
Qualcomm -> Wcd9340 
Qualcomm -> Qca6564a 
Qualcomm -> Wcn3910 
Qualcomm -> Qcm6125 
Qualcomm -> Wsa8810 
Qualcomm -> Qdm3302 
Qualcomm -> Wtr6955 
Qualcomm -> Qet5100m 
Qualcomm -> Qfe3335 
Qualcomm -> Qfs2608 
Qualcomm -> Apq8017 
Qualcomm -> Qpa4360 
Qualcomm -> Mdm8635m 
Qualcomm -> Qpm2630 
Qualcomm -> Msm8626 
Qualcomm -> Qpm6582 
Qualcomm -> Pm456 
Qualcomm -> Qtc800t 
Qualcomm -> Pm7150a 
Qualcomm -> Sd439 
Qualcomm -> Pm8226 
Qualcomm -> Sd750g 
Qualcomm -> Pm8953 
Qualcomm -> Sdm830 
Qualcomm -> Pmk8001 
Qualcomm -> Sdxr1 
Qualcomm -> Qat3516 
Qualcomm -> Smb1390 
Qualcomm -> Qca6174 
Qualcomm -> Wcd9341 
Qualcomm -> Qca6564au 
Qualcomm -> Wcn3950 
Qualcomm -> Qcs2290 
Qualcomm -> Wsa8815 
Qualcomm -> Qdm4643 
Qualcomm -> Qet6100 
Qualcomm -> Qfe3340 
Qualcomm -> Qfs2630 
Qualcomm -> Apq8037 
Qualcomm -> Qpa4361 
Qualcomm -> Mdm9225 
Qualcomm -> Qpm4621 
Qualcomm -> Msm8917 
Qualcomm -> Qpm6585 
Qualcomm -> Pm6125 
Qualcomm -> Qtc801s 
Qualcomm -> Pm7150l 
Qualcomm -> Sd450 
Qualcomm -> Pm8250 
Qualcomm -> Sd765 
Qualcomm -> Pm8956 
Qualcomm -> Sdr051 
Qualcomm -> Pmk8002 
Qualcomm -> Sdxr25g 
Qualcomm -> Qat3518 
Qualcomm -> Smb1394 
Qualcomm -> Qca6174a 
Qualcomm -> Wcd9360 
Qualcomm -> Qca6574 
Qualcomm -> Wcn3980 
Qualcomm -> Qcs405 
Qualcomm -> Wsa8830 
Qualcomm -> Qdm4650 
Qualcomm -> Qet6110 
Qualcomm -> Qfe3345 
Qualcomm -> Qln1020 

 References:
https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin
https://www.qualcomm.com/company/product-security/bulletins/december-2020-security-bulletin

Copyright 2024, cxsecurity.com

 

Back to Top