7.8
CVE-2020-11207
- EPSS 0.54%
- Published 12.11.2020 10:15:13
- Last modified 21.11.2024 04:57:15
- Source product-security@qualcomm.com
- Teams watchlist Login
- Open Login
Buffer overflow in LibFastCV library due to improper size checks with respect to buffer length' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8052, APQ8056, APQ8076, APQ8096, APQ8096SG, APQ8098, MDM9655, MSM8952, MSM8956, MSM8976, MSM8976SG, MSM8996, MSM8996SG, MSM8998, QCM4290, QCM6125, QCS410, QCS4290, QCS610, QCS6125, QSM8250, SA6145P, SA6150P, SA6155, SA6155P, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SDA640, SDA660, SDA845, SDA855, SDM640, SDM660, SDM830, SDM845, SDM850, SDX50M, SDX55, SDX55M, SM4250, SM4250P, SM6115, SM6115P, SM6125, SM6150, SM6150P, SM6250, SM6250P, SM6350, SM7125, SM7150, SM7150P, SM7225, SM7250, SM7250P, SM8150, SM8150P, SM8250, SXR2130, SXR2130P
Data is provided by the National Vulnerability Database (NVD)
Qualcomm ≫ Apq8052 Firmware Version-
Qualcomm ≫ Apq8056 Firmware Version-
Qualcomm ≫ Apq8076 Firmware Version-
Qualcomm ≫ Apq8096 Firmware Version-
Qualcomm ≫ Apq8098 Firmware Version-
Qualcomm ≫ Mdm9655 Firmware Version-
Qualcomm ≫ Msm8952 Firmware Version-
Qualcomm ≫ Msm8956 Firmware Version-
Qualcomm ≫ Msm8976 Firmware Version-
Qualcomm ≫ Msm8976sg Firmware Version-
Qualcomm ≫ Msm8996 Firmware Version-
Qualcomm ≫ Msm8996sg Firmware Version-
Qualcomm ≫ Msm8998 Firmware Version-
Qualcomm ≫ Qcm4290 Firmware Version-
Qualcomm ≫ Qcm6125 Firmware Version-
Qualcomm ≫ Qcs410 Firmware Version-
Qualcomm ≫ Qcs4290 Firmware Version-
Qualcomm ≫ Qcs610 Firmware Version-
Qualcomm ≫ Qcs6125 Firmware Version-
Qualcomm ≫ Qsm8250 Firmware Version-
Qualcomm ≫ Sa6145p Firmware Version-
Qualcomm ≫ Sa6150p Firmware Version-
Qualcomm ≫ Sa6155 Firmware Version-
Qualcomm ≫ Sa6155p Firmware Version-
Qualcomm ≫ Sa8150p Firmware Version-
Qualcomm ≫ Sa8155 Firmware Version-
Qualcomm ≫ Sa8155p Firmware Version-
Qualcomm ≫ Sa8195p Firmware Version-
Qualcomm ≫ Sc7180 Firmware Version-
Qualcomm ≫ Sda640 Firmware Version-
Qualcomm ≫ Sda660 Firmware Version-
Qualcomm ≫ Sda845 Firmware Version-
Qualcomm ≫ Sda855 Firmware Version-
Qualcomm ≫ Sdm640 Firmware Version-
Qualcomm ≫ Sdm660 Firmware Version-
Qualcomm ≫ Sdm830 Firmware Version-
Qualcomm ≫ Sdm845 Firmware Version-
Qualcomm ≫ Sdm850 Firmware Version-
Qualcomm ≫ Sdx50m Firmware Version-
Qualcomm ≫ Sdx55 Firmware Version-
Qualcomm ≫ Sdx55m Firmware Version-
Qualcomm ≫ Sm4250 Firmware Version-
Qualcomm ≫ Sm4250p Firmware Version-
Qualcomm ≫ Sm6115 Firmware Version-
Qualcomm ≫ Sm6115p Firmware Version-
Qualcomm ≫ Sm6125 Firmware Version-
Qualcomm ≫ Sm6150 Firmware Version-
Qualcomm ≫ Sm6150p Firmware Version-
Qualcomm ≫ Sm6250 Firmware Version-
Qualcomm ≫ Sm6250p Firmware Version-
Qualcomm ≫ Sm6350 Firmware Version-
Qualcomm ≫ Sm7125 Firmware Version-
Qualcomm ≫ Sm7150 Firmware Version-
Qualcomm ≫ Sm7150p Firmware Version-
Qualcomm ≫ Sm7225 Firmware Version-
Qualcomm ≫ Sm7250 Firmware Version-
Qualcomm ≫ Sm7250p Firmware Version-
Qualcomm ≫ Sm8150 Firmware Version-
Qualcomm ≫ Sm8150p Firmware Version-
Qualcomm ≫ Sm8250 Firmware Version-
Qualcomm ≫ Sxr2130 Firmware Version-
Qualcomm ≫ Sxr2130p Firmware Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.54% | 0.662 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.