Vulnerability CVE-2020-11167


Published: 2021-01-21

Description:
Memory corruption while calculating L2CAP packet length in reassembly logic when remote sends more data than expected in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Type:

CWE-190

(Integer Overflow or Wraparound)

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Qualcomm -> Pmm855au 
Qualcomm -> Qat5522 
Qualcomm -> Qca6431 
Qualcomm -> Qdm2307 
Qualcomm -> Qet6100 
Qualcomm -> Qfe4373fc 
Qualcomm -> Qpa2625 
Qualcomm -> Qpm5658 
Qualcomm -> Qtc800s 
Qualcomm -> Sd665 
Qualcomm -> Sdm429w 
Qualcomm -> Sdxr25g 
Qualcomm -> Wcd9360 
Qualcomm -> Pm3003a 
Qualcomm -> Wcn3991 
Qualcomm -> Pm7150l 
Qualcomm -> Pm855p 
Qualcomm -> Pmm8996au 
Qualcomm -> Qat5533 
Qualcomm -> Qca6436 
Qualcomm -> Qdm2308 
Qualcomm -> Qet6110 
Qualcomm -> Qfe4455fc 
Qualcomm -> Qpa4360 
Qualcomm -> Qpm5670 
Qualcomm -> Qtc800t 
Qualcomm -> Sd675 
Qualcomm -> Sdm830 
Qualcomm -> Sm7250p 
Qualcomm -> Apq8009w 
Qualcomm -> Wcd9370 
Qualcomm -> Pm439 
Qualcomm -> Wcn3998 
Qualcomm -> Pm7250 
Qualcomm -> Pm8909 
Qualcomm -> Pmr525 
Qualcomm -> Qbt1000 
Qualcomm -> Qca6564a 
Qualcomm -> Qdm2310 
Qualcomm -> Qfe2080fc 
Qualcomm -> Qfe4465fc 
Qualcomm -> Qpa4361 
Qualcomm -> Qpm5677 
Qualcomm -> Qtc801s 
Qualcomm -> Sd6905g 
Qualcomm -> Sdr051 
Qualcomm -> Smb1351 
Qualcomm -> Apq8017 
Qualcomm -> Wcd9375 
Qualcomm -> Pm6125 
Qualcomm -> Wgr7640 
Qualcomm -> Pm7250b 
Qualcomm -> Pm8937 
Qualcomm -> Pmr735a 
Qualcomm -> Qbt1500 
Qualcomm -> Qca6564au 
Qualcomm -> Qdm3301 
Qualcomm -> Qfe2081fc 
Qualcomm -> Qfs2530 
Qualcomm -> Qpa5460 
Qualcomm -> Qpm5679 
Qualcomm -> Qtm525 
Qualcomm -> Sd710 
Qualcomm -> Sdr052 
Qualcomm -> Smb1355 
Qualcomm -> Apq8037 
Qualcomm -> Wcd9380 
Qualcomm -> Pm6150 
Qualcomm -> Whs9410 
Qualcomm -> Pm8004 
Qualcomm -> Pm8940 
Qualcomm -> Pmr735b 
Qualcomm -> Qbt2000 
Qualcomm -> Qca6574 
Qualcomm -> Qdm5620 
Qualcomm -> Qfe2082fc 
Qualcomm -> Qfs2580 
Qualcomm -> Qpa5580 
Qualcomm -> Qpm6582 
Qualcomm -> Qualcomm215 
Qualcomm -> Sd712 
Qualcomm -> Sdr660 
Qualcomm -> Smb1358 
Qualcomm -> Apq8053 
Qualcomm -> Wcd9385 
Qualcomm -> Pm6150a 
Qualcomm -> Wsa8810 
Qualcomm -> Pm8005 
Qualcomm -> Pm8953 
Qualcomm -> Pmw3100 
Qualcomm -> Qca6174a 
Qualcomm -> Qca6574a 
Qualcomm -> Qdm5621 
Qualcomm -> Qfe2101 
Qualcomm -> Qln1020 
Qualcomm -> Qpa5581 
Qualcomm -> Qpm6585 
Qualcomm -> Rgr7640au 
Qualcomm -> Sd750g 
Qualcomm -> Sdr660g 

 References:
https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin
https://www.qualcomm.com/company/product-security/bulletins/december-2020-security-bulletin

Copyright 2024, cxsecurity.com

 

Back to Top