7.8

CVE-2020-11206

Exploit

EPSS 0.66%
Veröffentlicht 12.11.2020 10:15:13
Zuletzt bearbeitet 21.11.2024 04:57:15
Quelle product-security@qualcomm.com
Teams Watchlist Login
Unerledigt Login

Possible buffer overflow in Fastrpc while handling received parameters due to lack of validation on input parameters' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8098, MSM8998, QCM4290, QCM6125, QCS410, QCS4290, QCS610, QCS6125, QSM8250, QSM8350, SA6145P, SA6150P, SA6155, SA6155P, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SDA640, SDA660, SDA845, SDA855, SDM640, SDM660, SDM830, SDM845, SDM850, SDX50M, SDX55, SDX55M, SM4250, SM4250P, SM6115, SM6115P, SM6125, SM6150, SM6150P, SM6250, SM6250P, SM6350, SM7125, SM7150, SM7150P, SM7225, SM7250, SM7250P, SM8150, SM8150P, SM8250, SM8350, SM8350P, SXR2130, SXR2130P

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Qualcomm ≫ Apq8098 Firmware Version-

Qualcomm ≫ Apq8098 Version-

Qualcomm ≫ Msm8998 Firmware Version-

Qualcomm ≫ Msm8998 Version-

Qualcomm ≫ Qcm4290 Firmware Version-

Qualcomm ≫ Qcm4290 Version-

Qualcomm ≫ Qcm6125 Firmware Version-

Qualcomm ≫ Qcm6125 Version-

Qualcomm ≫ Qcs410 Firmware Version-

Qualcomm ≫ Qcs410 Version-

Qualcomm ≫ Qcs4290 Firmware Version-

Qualcomm ≫ Qcs4290 Version-

Qualcomm ≫ Qcs610 Firmware Version-

Qualcomm ≫ Qcs610 Version-

Qualcomm ≫ Qcs6125 Firmware Version-

Qualcomm ≫ Qcs6125 Version-

Qualcomm ≫ Qsm8250 Firmware Version-

Qualcomm ≫ Qsm8250 Version-

Qualcomm ≫ Qsm8350 Firmware Version-

Qualcomm ≫ Qsm8350 Version-

Qualcomm ≫ Sa6145p Firmware Version-

Qualcomm ≫ Sa6145p Version-

Qualcomm ≫ Sa6150p Firmware Version-

Qualcomm ≫ Sa6150p Version-

Qualcomm ≫ Sa6155 Firmware Version-

Qualcomm ≫ Sa6155 Version-

Qualcomm ≫ Sa6155p Firmware Version-

Qualcomm ≫ Sa6155p Version-

Qualcomm ≫ Sa8150p Firmware Version-

Qualcomm ≫ Sa8150p Version-

Qualcomm ≫ Sa8155 Firmware Version-

Qualcomm ≫ Sa8155 Version-

Qualcomm ≫ Sa8155p Firmware Version-

Qualcomm ≫ Sa8155p Version-

Qualcomm ≫ Sa8195p Firmware Version-

Qualcomm ≫ Sa8195p Version-

Qualcomm ≫ Sc7180 Firmware Version-

Qualcomm ≫ Sc7180 Version-

Qualcomm ≫ Sda640 Firmware Version-

Qualcomm ≫ Sda640 Version-

Qualcomm ≫ Sda660 Firmware Version-

Qualcomm ≫ Sda660 Version-

Qualcomm ≫ Sda845 Firmware Version-

Qualcomm ≫ Sda845 Version-

Qualcomm ≫ Sda855 Firmware Version-

Qualcomm ≫ Sda855 Version-

Qualcomm ≫ Sdm640 Firmware Version-

Qualcomm ≫ Sdm640 Version-

Qualcomm ≫ Sdm660 Firmware Version-

Qualcomm ≫ Sdm660 Version-

Qualcomm ≫ Sdm830 Firmware Version-

Qualcomm ≫ Sdm830 Version-

Qualcomm ≫ Sdm845 Firmware Version-

Qualcomm ≫ Sdm845 Version-

Qualcomm ≫ Sdm850 Firmware Version-

Qualcomm ≫ Sdm850 Version-

Qualcomm ≫ Sdx50m Firmware Version-

Qualcomm ≫ Sdx50m Version-

Qualcomm ≫ Sdx55 Firmware Version-

Qualcomm ≫ Sdx55 Version-

Qualcomm ≫ Sdx55m Firmware Version-

Qualcomm ≫ Sdx55m Version-

Qualcomm ≫ Sm4250 Firmware Version-

Qualcomm ≫ Sm4250 Version-

Qualcomm ≫ Sm4250p Firmware Version-

Qualcomm ≫ Sm4250p Version-

Qualcomm ≫ Sm6115 Firmware Version-

Qualcomm ≫ Sm6115 Version-

Qualcomm ≫ Sm6115p Firmware Version-

Qualcomm ≫ Sm6115p Version-

Qualcomm ≫ Sm6125 Firmware Version-

Qualcomm ≫ Sm6125 Version-

Qualcomm ≫ Sm6150 Firmware Version-

Qualcomm ≫ Sm6150 Version-

Qualcomm ≫ Sm6150p Firmware Version-

Qualcomm ≫ Sm6150p Version-

Qualcomm ≫ Sm6250 Firmware Version-

Qualcomm ≫ Sm6250 Version-

Qualcomm ≫ Sm6250p Firmware Version-

Qualcomm ≫ Sm6250p Version-

Qualcomm ≫ Sm6350 Firmware Version-

Qualcomm ≫ Sm6350 Version-

Qualcomm ≫ Sm7125 Firmware Version-

Qualcomm ≫ Sm7125 Version-

Qualcomm ≫ Sm7150 Firmware Version-

Qualcomm ≫ Sm7150 Version-

Qualcomm ≫ Sm7150p Firmware Version-

Qualcomm ≫ Sm7150p Version-

Qualcomm ≫ Sm7225 Firmware Version-

Qualcomm ≫ Sm7225 Version-

Qualcomm ≫ Sm7250 Firmware Version-

Qualcomm ≫ Sm7250 Version-

Qualcomm ≫ Sm7250p Firmware Version-

Qualcomm ≫ Sm7250p Version-

Qualcomm ≫ Sm8150 Firmware Version-

Qualcomm ≫ Sm8150 Version-

Qualcomm ≫ Sm8150p Firmware Version-

Qualcomm ≫ Sm8150p Version-

Qualcomm ≫ Sm8250 Firmware Version-

Qualcomm ≫ Sm8250 Version-

Qualcomm ≫ Sm8350 Firmware Version-

Qualcomm ≫ Sm8350 Version-

Qualcomm ≫ Sm8350p Firmware Version-

Qualcomm ≫ Sm8350p Version-

Qualcomm ≫ Sxr2130 Firmware Version-

Qualcomm ≫ Sxr2130 Version-

Qualcomm ≫ Sxr2130p Firmware Version-

Qualcomm ≫ Sxr2130p Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.66%	0.699

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

https://www.qualcomm.com/company/product-security/bulletins/november-2020-bulletin

Vendor Advisory

https://blog.checkpoint.com/2020/08/06/achilles-small-chip-big-peril/

Third Party Advisory

https://research.checkpoint.com/2021/pwn2own-qualcomm-dsp/

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2020-11206

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-11206

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-11206

EUVD