Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-11202

Buffer overflow/underflow occurs when typecasting the buffer passed by CPU internally in the library which is not aligned with the actual size of the structure' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in QCM6125, QCS410, QCS603, QCS605, QCS610, QCS6125, SA6145P, SA6155, SA6155P, SA8155, SA8155P, SDA640, SDA670, SDA845, SDM640, SDM670, SDM710, SDM830, SDM845, SDX50M, SDX55, SDX55M, SM6125, SM6150, SM6150P, SM6250, SM6250P, SM7125, SM7150, SM7150P, SM8150, SM8150P

Published

2020-11-12T10:15:12.890

Last Modified

2024-11-21T04:57:14.283

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.9

Impact Score

10.0

Weaknesses

Type: Primary
CWE-787

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	qualcomm	qcm6125_firmware	-	Yes
Hardware	qualcomm	qcm6125	-	No
Operating System	qualcomm	qcs410_firmware	-	Yes
Hardware	qualcomm	qcs410	-	No
Operating System	qualcomm	qcs603_firmware	-	Yes
Hardware	qualcomm	qcs603	-	No
Operating System	qualcomm	qcs605_firmware	-	Yes
Hardware	qualcomm	qcs605	-	No
Operating System	qualcomm	qcs610_firmware	-	Yes
Hardware	qualcomm	qcs610	-	No
Operating System	qualcomm	qcs6125_firmware	-	Yes
Hardware	qualcomm	qcs6125	-	No
Operating System	qualcomm	sa6145p_firmware	-	Yes
Hardware	qualcomm	sa6145p	-	No
Operating System	qualcomm	sa6155_firmware	-	Yes
Hardware	qualcomm	sa6155	-	No
Operating System	qualcomm	sa6155p_firmware	-	Yes
Hardware	qualcomm	sa6155p	-	No
Operating System	qualcomm	sa8155_firmware	-	Yes
Hardware	qualcomm	sa8155	-	No
Operating System	qualcomm	sa8155p_firmware	-	Yes
Hardware	qualcomm	sa8155p	-	No
Operating System	qualcomm	sda640_firmware	-	Yes
Hardware	qualcomm	sda640	-	No
Operating System	qualcomm	sda670_firmware	-	Yes
Hardware	qualcomm	sda670	-	No
Operating System	qualcomm	sda845_firmware	-	Yes
Hardware	qualcomm	sda845	-	No
Operating System	qualcomm	sdm640_firmware	-	Yes
Hardware	qualcomm	sdm640	-	No
Operating System	qualcomm	sdm670_firmware	-	Yes
Hardware	qualcomm	sdm670	-	No
Operating System	qualcomm	sdm710_firmware	-	Yes
Hardware	qualcomm	sdm710	-	No
Operating System	qualcomm	sdm830_firmware	-	Yes
Hardware	qualcomm	sdm830	-	No
Operating System	qualcomm	sdm845_firmware	-	Yes
Hardware	qualcomm	sdm845	-	No
Operating System	qualcomm	sdx50m_firmware	-	Yes
Hardware	qualcomm	sdx50m	-	No
Operating System	qualcomm	sdx55_firmware	-	Yes
Hardware	qualcomm	sdx55	-	No
Operating System	qualcomm	sdx55m_firmware	-	Yes
Hardware	qualcomm	sdx55m	-	No
Operating System	qualcomm	sm6125_firmware	-	Yes
Hardware	qualcomm	sm6125	-	No
Operating System	qualcomm	sm6150_firmware	-	Yes
Hardware	qualcomm	sm6150	-	No
Operating System	qualcomm	sm6150p_firmware	-	Yes
Hardware	qualcomm	sm6150p	-	No
Operating System	qualcomm	sm6250_firmware	-	Yes
Hardware	qualcomm	sm6250	-	No
Operating System	qualcomm	sm6250p_firmware	-	Yes
Hardware	qualcomm	sm6250p	-	No
Operating System	qualcomm	sm7125_firmware	-	Yes
Hardware	qualcomm	sm7125	-	No
Operating System	qualcomm	sm7150_firmware	-	Yes
Hardware	qualcomm	sm7150	-	No
Operating System	qualcomm	sm7150p_firmware	-	Yes
Hardware	qualcomm	sm7150p	-	No
Operating System	qualcomm	sm8150_firmware	-	Yes
Hardware	qualcomm	sm8150	-	No
Operating System	qualcomm	sm8150p_firmware	-	Yes
Hardware	qualcomm	sm8150p	-	No

References

https://blog.checkpoint.com/2020/08/06/achilles-small-chip-big-peril/ Third Party Advisory ([email protected])
https://research.checkpoint.com/2021/pwn2own-qualcomm-dsp/ Exploit, Third Party Advisory ([email protected])
https://www.qualcomm.com/company/product-security/bulletins/november-2020-bulletin Broken Link, Vendor Advisory ([email protected])
https://blog.checkpoint.com/2020/08/06/achilles-small-chip-big-peril/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://research.checkpoint.com/2021/pwn2own-qualcomm-dsp/ Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.qualcomm.com/company/product-security/bulletins/november-2020-bulletin Broken Link, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)