Vulnerability CVE-2020-11215


Published: 2021-01-21

Description:
An out of bounds read can happen when processing VSA attribute due to improper minimum required length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

Type:

CWE-125

(Out-of-bounds Read)

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.4/10
4.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
None
Partial
Affected software
Qualcomm -> Qdm5621 
Qualcomm -> Qfs2608 
Qualcomm -> Qpa4361 
Qualcomm -> Qpm4621 
Qualcomm -> Qpm5870 
Qualcomm -> Ipq6018 
Qualcomm -> Qtc410s 
Qualcomm -> Ipq8173 
Qualcomm -> Sa8195p 
Qualcomm -> Pm660l 
Qualcomm -> Sd765g 
Qualcomm -> Pm8150l 
Qualcomm -> Sdr660g 
Qualcomm -> Pmi8998 
Qualcomm -> Sm6250p 
Qualcomm -> Qat3516 
Qualcomm -> Wcd9326 
Qualcomm -> Qca6175a 
Qualcomm -> Wcn3998 
Qualcomm -> Qca6574a 
Qualcomm -> Wtr6955 
Qualcomm -> Qca9990 
Qualcomm -> Qcn5164 
Qualcomm -> Qcs410 
Qualcomm -> Qdm5650 
Qualcomm -> Qfs2630 
Qualcomm -> Qpa5460 
Qualcomm -> Qpm4630 
Qualcomm -> Aqt1000 
Qualcomm -> Qpm5875 
Qualcomm -> Ipq6028 
Qualcomm -> Qtc800h 
Qualcomm -> Ipq8174 
Qualcomm -> Sd455 
Qualcomm -> Pm670 
Qualcomm -> Sd768g 
Qualcomm -> Pm8250 
Qualcomm -> Sdr675 
Qualcomm -> Pmk8002 
Qualcomm -> Sm7250p 
Qualcomm -> Qat3518 
Qualcomm -> Wcd9335 
Qualcomm -> Qca6310 
Qualcomm -> Wcn3999 
Qualcomm -> Qca6574au 
Qualcomm -> Qca9992 
Qualcomm -> Qcn5550 
Qualcomm -> Qcs4290 
Qualcomm -> Qdm5652 
Qualcomm -> Qln1020 
Qualcomm -> Qpa5461 
Qualcomm -> Qpm4640 
Qualcomm -> Ar8031 
Qualcomm -> Qpm6325 
Qualcomm -> Ipq8064 
Qualcomm -> Qtc800s 
Qualcomm -> Pm3003a 
Qualcomm -> Sd460 
Qualcomm -> Pm670a 
Qualcomm -> SD7C 
Qualcomm -> Pm8350 
Qualcomm -> Sdr735 
Qualcomm -> Pmk8003 
Qualcomm -> Smb1351 
Qualcomm -> Qat3519 
Qualcomm -> Wcd9340 
Qualcomm -> Qca6335 
Qualcomm -> Wcn6750 
Qualcomm -> Qca6584au 
Qualcomm -> Qca9994 
Qualcomm -> Qcn6023 
Qualcomm -> Qcs603 
Qualcomm -> Qdm5670 
Qualcomm -> Qln1021aq 
Qualcomm -> Qpa5580 
Qualcomm -> Qpm4641 
Qualcomm -> Ar8035 
Qualcomm -> Qpm6375 
Qualcomm -> Ipq8069 
Qualcomm -> Qtc801s 
Qualcomm -> Pm4125 
Qualcomm -> Sd636 
Qualcomm -> Pm670l 
Qualcomm -> Sd845 
Qualcomm -> Pm8350b 
Qualcomm -> Sdr735g 
Qualcomm -> Pmk8350 
Qualcomm -> Smb1354 
Qualcomm -> Qat3522 
Qualcomm -> Wcd9341 
Qualcomm -> Qca6390 
Qualcomm -> Wcn6850 
Qualcomm -> Qca6595 
Qualcomm -> Qcm2290 
Qualcomm -> Qcn6024 
Qualcomm -> Qcs605 
Qualcomm -> Qdm5671 
Qualcomm -> Qln1030 
Qualcomm -> Qpa5581 
Qualcomm -> Qpm4650 

 References:
https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin
https://www.qualcomm.com/company/product-security/bulletins/december-2020-security-bulletin

Copyright 2024, cxsecurity.com

 

Back to Top