7.8
CVE-2020-11127
- EPSS 0.04%
- Published 12.11.2020 10:15:12
- Last modified 21.11.2024 04:56:52
- Source product-security@qualcomm.com
- Teams watchlist Login
- Open Login
u'Integer overflow can cause a buffer overflow due to lack of table length check in the extensible boot Loader during the validation of security metadata while processing objects to be loaded' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9205, QCM4290, QCS405, QCS410, QCS4290, QCS610, QSM8250, SA415M, SA515M, SA6145P, SA6150P, SA6155, SA6155P, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SC8180X, SC8180X+SDX55, SC8180XP, SDA640, SDA845, SDA855, SDM1000, SDM640, SDM830, SDM845, SDM850, SDX24, SDX50M, SDX55, SDX55M, SM4125, SM4250, SM4250P, SM6115, SM6115P, SM6150, SM6150P, SM6250, SM6250P, SM6350, SM7125, SM7150, SM7150P, SM7225, SM7250, SM7250P, SM8150, SM8150P, SM8250, SXR2130, SXR2130P
Data is provided by the National Vulnerability Database (NVD)
Qualcomm ≫ Mdm9205 Firmware Version-
Qualcomm ≫ Qcm4290 Firmware Version-
Qualcomm ≫ Qcs405 Firmware Version-
Qualcomm ≫ Qcs410 Firmware Version-
Qualcomm ≫ Qcs4290 Firmware Version-
Qualcomm ≫ Qcs610 Firmware Version-
Qualcomm ≫ Qsm8250 Firmware Version-
Qualcomm ≫ Sa415m Firmware Version-
Qualcomm ≫ Sa515m Firmware Version-
Qualcomm ≫ Sa6145p Firmware Version-
Qualcomm ≫ Sa6150p Firmware Version-
Qualcomm ≫ Sa6155 Firmware Version-
Qualcomm ≫ Sa6155p Firmware Version-
Qualcomm ≫ Sa8150p Firmware Version-
Qualcomm ≫ Sa8155 Firmware Version-
Qualcomm ≫ Sa8155p Firmware Version-
Qualcomm ≫ Sa8195p Firmware Version-
Qualcomm ≫ Sc7180 Firmware Version-
Qualcomm ≫ Sc8180x Firmware Version-
Qualcomm ≫ Sdx55 Firmware Version-
Qualcomm ≫ Sc8180xp Firmware Version-
Qualcomm ≫ Sda640 Firmware Version-
Qualcomm ≫ Sda845 Firmware Version-
Qualcomm ≫ Sda855 Firmware Version-
Qualcomm ≫ Sdm1000 Firmware Version-
Qualcomm ≫ Sdm640 Firmware Version-
Qualcomm ≫ Sdm830 Firmware Version-
Qualcomm ≫ Sdm845 Firmware Version-
Qualcomm ≫ Sdm850 Firmware Version-
Qualcomm ≫ Sdx24 Firmware Version-
Qualcomm ≫ Sdx50m Firmware Version-
Qualcomm ≫ Sdx55 Firmware Version-
Qualcomm ≫ Sdx55m Firmware Version-
Qualcomm ≫ Sm4125 Firmware Version-
Qualcomm ≫ Sm4250 Firmware Version-
Qualcomm ≫ Sm4250p Firmware Version-
Qualcomm ≫ Sm6115 Firmware Version-
Qualcomm ≫ Sm6115p Firmware Version-
Qualcomm ≫ Sm6150 Firmware Version-
Qualcomm ≫ Sm6150p Firmware Version-
Qualcomm ≫ Sm6250 Firmware Version-
Qualcomm ≫ Sm6250p Firmware Version-
Qualcomm ≫ Sm6350 Firmware Version-
Qualcomm ≫ Sm7125 Firmware Version-
Qualcomm ≫ Sm7150 Firmware Version-
Qualcomm ≫ Sm7150p Firmware Version-
Qualcomm ≫ Sm7225 Firmware Version-
Qualcomm ≫ Sm7250 Firmware Version-
Qualcomm ≫ Sm7250p Firmware Version-
Qualcomm ≫ Sm8150 Firmware Version-
Qualcomm ≫ Sm8150p Firmware Version-
Qualcomm ≫ Sm8250 Firmware Version-
Qualcomm ≫ Sxr2130 Firmware Version-
Qualcomm ≫ Sxr2130p Firmware Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.04% | 0.066 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
CWE-190 Integer Overflow or Wraparound
The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.