Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-11217

A possible double free or invalid memory access in audio driver while reading Speaker Protection parameters in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile

Security Impact Summary

This vulnerability carries a HIGH severity rating with a CVSS v3.1 score of 7.8, requiring local system access to exploit with relatively low complexity without requiring user interaction requiring only low-level privileges . The vulnerability impacts confidentiality (data exposure), integrity (unauthorized modifications), and availability (service disruption) for affected systems. Impacting 193 products from qualcomm, from qualcomm, from qualcomm and 190 others, organizations running these solutions should prioritize assessment and patching.

Historical Context

Reported in 2021, this vulnerability emerged during an era marked by increased sophistication in supply chain attacks, cloud infrastructure vulnerabilities, and software-as-a-service (SaaS) security challenges. Security practices during this period emphasized zero-trust architectures, container security, and API protection.

Published

2021-01-21T10:15:14.823

Last Modified

2024-11-21T04:57:17.133

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

3.9

Impact Score

6.4

Weaknesses

Type: Primary
CWE-415

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Hardware	qualcomm	pm3003a	-	Yes
Hardware	qualcomm	pm4125	-	Yes
Hardware	qualcomm	pm6125	-	Yes
Hardware	qualcomm	pm6150a	-	Yes
Hardware	qualcomm	pm6150l	-	Yes
Hardware	qualcomm	pm6350	-	Yes
Hardware	qualcomm	pm660	-	Yes
Hardware	qualcomm	pm660a	-	Yes
Hardware	qualcomm	pm660l	-	Yes
Hardware	qualcomm	pm7150a	-	Yes
Hardware	qualcomm	pm7150l	-	Yes
Hardware	qualcomm	pm7250	-	Yes
Hardware	qualcomm	pm7250b	-	Yes
Hardware	qualcomm	pm7350c	-	Yes
Hardware	qualcomm	pm8008	-	Yes
Hardware	qualcomm	pm8009	-	Yes
Hardware	qualcomm	pm8150a	-	Yes
Hardware	qualcomm	pm8150b	-	Yes
Hardware	qualcomm	pm8150c	-	Yes
Hardware	qualcomm	pm8150l	-	Yes
Hardware	qualcomm	pm8250	-	Yes
Hardware	qualcomm	pm8350	-	Yes
Hardware	qualcomm	pm8350b	-	Yes
Hardware	qualcomm	pm8350bh	-	Yes
Hardware	qualcomm	pm8350bhs	-	Yes
Hardware	qualcomm	pm8350c	-	Yes
Hardware	qualcomm	pmi632	-	Yes
Hardware	qualcomm	pmk7350	-	Yes
Hardware	qualcomm	pmk8002	-	Yes
Hardware	qualcomm	pmk8003	-	Yes
Hardware	qualcomm	pmk8350	-	Yes
Hardware	qualcomm	pmr525	-	Yes
Hardware	qualcomm	pmr735a	-	Yes
Hardware	qualcomm	pmr735b	-	Yes
Hardware	qualcomm	pmx55	-	Yes
Hardware	qualcomm	qat3514	-	Yes
Hardware	qualcomm	qat3516	-	Yes
Hardware	qualcomm	qat3518	-	Yes
Hardware	qualcomm	qat3519	-	Yes
Hardware	qualcomm	qat3522	-	Yes
Hardware	qualcomm	qat3550	-	Yes
Hardware	qualcomm	qat3555	-	Yes
Hardware	qualcomm	qat5515	-	Yes
Hardware	qualcomm	qat5516	-	Yes
Hardware	qualcomm	qat5522	-	Yes
Hardware	qualcomm	qat5533	-	Yes
Hardware	qualcomm	qat5568	-	Yes
Hardware	qualcomm	qbt2000	-	Yes
Hardware	qualcomm	qca6390	-	Yes
Hardware	qualcomm	qca6391	-	Yes
Hardware	qualcomm	qca6421	-	Yes
Hardware	qualcomm	qca6426	-	Yes
Hardware	qualcomm	qca6431	-	Yes
Hardware	qualcomm	qca6436	-	Yes
Hardware	qualcomm	qcm2290	-	Yes
Hardware	qualcomm	qcm4290	-	Yes
Hardware	qualcomm	qcs2290	-	Yes
Hardware	qualcomm	qcs4290	-	Yes
Hardware	qualcomm	qdm2301	-	Yes
Hardware	qualcomm	qdm2305	-	Yes
Hardware	qualcomm	qdm2307	-	Yes
Hardware	qualcomm	qdm2308	-	Yes
Hardware	qualcomm	qdm2310	-	Yes
Hardware	qualcomm	qdm3301	-	Yes
Hardware	qualcomm	qdm3302	-	Yes
Hardware	qualcomm	qdm4643	-	Yes
Hardware	qualcomm	qdm4650	-	Yes
Hardware	qualcomm	qdm5579	-	Yes
Hardware	qualcomm	qdm5620	-	Yes
Hardware	qualcomm	qdm5621	-	Yes
Hardware	qualcomm	qdm5650	-	Yes
Hardware	qualcomm	qdm5652	-	Yes
Hardware	qualcomm	qdm5670	-	Yes
Hardware	qualcomm	qdm5671	-	Yes
Hardware	qualcomm	qdm5677	-	Yes
Hardware	qualcomm	qdm5679	-	Yes
Hardware	qualcomm	qet4100	-	Yes
Hardware	qualcomm	qet4101	-	Yes
Hardware	qualcomm	qet5100	-	Yes
Hardware	qualcomm	qet5100m	-	Yes
Hardware	qualcomm	qet6100	-	Yes
Hardware	qualcomm	qet6110	-	Yes
Hardware	qualcomm	qfs2530	-	Yes
Hardware	qualcomm	qfs2580	-	Yes
Hardware	qualcomm	qfs2608	-	Yes
Hardware	qualcomm	qfs2630	-	Yes
Hardware	qualcomm	qln4642	-	Yes
Hardware	qualcomm	qln4650	-	Yes
Hardware	qualcomm	qln5020	-	Yes
Hardware	qualcomm	qln5030	-	Yes
Hardware	qualcomm	qln5040	-	Yes
Hardware	qualcomm	qpa2625	-	Yes
Hardware	qualcomm	qpa4340	-	Yes
Hardware	qualcomm	qpa4360	-	Yes
Hardware	qualcomm	qpa5461	-	Yes
Hardware	qualcomm	qpa5580	-	Yes
Hardware	qualcomm	qpa5581	-	Yes
Hardware	qualcomm	qpa6560	-	Yes
Hardware	qualcomm	qpa8673	-	Yes
Hardware	qualcomm	qpa8686	-	Yes
Hardware	qualcomm	qpa8801	-	Yes
Hardware	qualcomm	qpa8802	-	Yes
Hardware	qualcomm	qpa8803	-	Yes
Hardware	qualcomm	qpa8821	-	Yes
Hardware	qualcomm	qpa8842	-	Yes
Hardware	qualcomm	qpm4621	-	Yes
Hardware	qualcomm	qpm4630	-	Yes
Hardware	qualcomm	qpm4640	-	Yes
Hardware	qualcomm	qpm4641	-	Yes
Hardware	qualcomm	qpm4650	-	Yes
Hardware	qualcomm	qpm5620	-	Yes
Hardware	qualcomm	qpm5621	-	Yes
Hardware	qualcomm	qpm5641	-	Yes
Hardware	qualcomm	qpm5657	-	Yes
Hardware	qualcomm	qpm5658	-	Yes
Hardware	qualcomm	qpm5670	-	Yes
Hardware	qualcomm	qpm5677	-	Yes
Hardware	qualcomm	qpm5679	-	Yes
Hardware	qualcomm	qpm5870	-	Yes
Hardware	qualcomm	qpm5875	-	Yes
Hardware	qualcomm	qpm6582	-	Yes
Hardware	qualcomm	qpm6585	-	Yes
Hardware	qualcomm	qpm6621	-	Yes
Hardware	qualcomm	qpm6670	-	Yes
Hardware	qualcomm	qpm8820	-	Yes
Hardware	qualcomm	qpm8830	-	Yes
Hardware	qualcomm	qpm8870	-	Yes
Hardware	qualcomm	qpm8895	-	Yes
Hardware	qualcomm	qsm7250	-	Yes
Hardware	qualcomm	qtc800h	-	Yes
Hardware	qualcomm	qtc800s	-	Yes
Hardware	qualcomm	qtc801s	-	Yes
Hardware	qualcomm	qtm525	-	Yes
Hardware	qualcomm	rsw8577	-	Yes
Hardware	qualcomm	sd460	-	Yes
Hardware	qualcomm	sd660	-	Yes
Hardware	qualcomm	sd662	-	Yes
Hardware	qualcomm	sd6905g	-	Yes
Hardware	qualcomm	sd750g	-	Yes
Hardware	qualcomm	sd765	-	Yes
Hardware	qualcomm	sd765g	-	Yes
Hardware	qualcomm	sd768g	-	Yes
Hardware	qualcomm	sd8655g	-	Yes
Hardware	qualcomm	sd8885g	-	Yes
Hardware	qualcomm	sdr425	-	Yes
Hardware	qualcomm	sdr660	-	Yes
Hardware	qualcomm	sdr735	-	Yes
Hardware	qualcomm	sdr735g	-	Yes
Hardware	qualcomm	sdr8250	-	Yes
Hardware	qualcomm	sdr865	-	Yes
Hardware	qualcomm	sdx55m	-	Yes
Hardware	qualcomm	sdxr25g	-	Yes
Hardware	qualcomm	sm4125	-	Yes
Hardware	qualcomm	sm4350	-	Yes
Hardware	qualcomm	sm7250p	-	Yes
Hardware	qualcomm	sm7350	-	Yes
Hardware	qualcomm	smb1351	-	Yes
Hardware	qualcomm	smb1354	-	Yes
Hardware	qualcomm	smb1355	-	Yes
Hardware	qualcomm	smb1390	-	Yes
Hardware	qualcomm	smb1394	-	Yes
Hardware	qualcomm	smb1395	-	Yes
Hardware	qualcomm	smb1396	-	Yes
Hardware	qualcomm	smb1398	-	Yes
Hardware	qualcomm	smr525	-	Yes
Hardware	qualcomm	smr526	-	Yes
Hardware	qualcomm	smr545	-	Yes
Hardware	qualcomm	smr546	-	Yes
Hardware	qualcomm	wcd9335	-	Yes
Hardware	qualcomm	wcd9341	-	Yes
Hardware	qualcomm	wcd9370	-	Yes
Hardware	qualcomm	wcd9375	-	Yes
Hardware	qualcomm	wcd9380	-	Yes
Hardware	qualcomm	wcd9385	-	Yes
Hardware	qualcomm	wcn3910	-	Yes
Hardware	qualcomm	wcn3950	-	Yes
Hardware	qualcomm	wcn3980	-	Yes
Hardware	qualcomm	wcn3988	-	Yes
Hardware	qualcomm	wcn3990	-	Yes
Hardware	qualcomm	wcn3991	-	Yes
Hardware	qualcomm	wcn3998	-	Yes
Hardware	qualcomm	wcn6740	-	Yes
Hardware	qualcomm	wcn6750	-	Yes
Hardware	qualcomm	wcn6850	-	Yes
Hardware	qualcomm	wcn6851	-	Yes
Hardware	qualcomm	wcn6856	-	Yes
Hardware	qualcomm	wgr7640	-	Yes
Hardware	qualcomm	wsa8810	-	Yes
Hardware	qualcomm	wsa8815	-	Yes
Hardware	qualcomm	wsa8830	-	Yes
Hardware	qualcomm	wsa8835	-	Yes
Hardware	qualcomm	wtr2965	-	Yes
Hardware	qualcomm	wtr3925	-	Yes

References

https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin Broken Link ([email protected])
https://www.qualcomm.com/company/product-security/bulletins/december-2020-security-bulletin Patch, Vendor Advisory ([email protected])
https://www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin Broken Link (af854a3a-2127-422b-91ae-364da2661108)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For qualcomm's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.