← Back

CVE-2020-11152

nvd nist
Published: Jan 21, 2021Modified: Nov 21, 2024

JSON object

Loading...
6.4
Vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Exploitability: 0.5 / Impact: 5.9
Source: NVD

Description

Race condition in HAL layer while processing callback objects received from HIDL due to lack of synchronization between accessing objects in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Affected (160)

Products: Qualcomm: Apq8009w, Apq8017, Apq8037, Apq8052, Apq8053, Apq8056, Apq8076, Apq8096au, Aqt1000, Ar8031, Csra6620, Csra6640, Msm8909w, Msm8916, Msm8917, Msm8920, Msm8937, Msm8940, Msm8952, Msm8953, Msm8956, Msm8976, Msm8976sg, Msm8996au, Pm439, Pm660, Pm660a, Pm660l, Pm670, Pm670a, Pm670l, Pm8004, Pm8005, Pm855, Pm855a, Pm855b, Pm855l, Pm855p, Pm8916, Pm8937, Pm8940, Pm8952, Pm8953, Pm8956, Pm8998, Pmd9655, Pmi632, Pmi8937, Pmi8952, Pmi8998, Pmm8996au, Pmx24, Pmx50, Qat3514, Qat3522, Qat3550, Qbt1000, Qbt1500, Qbt2000, Qca6174a, Qca6310, Qca6320, Qca6420, Qca6430, Qca6564a, Qca6564au, Qca6574a, Qca6574au, Qca6584au, Qca8337, Qca9377, Qcc1110, Qcs405, Qcs603, Qcs605, Qet4100, Qet4101, Qet5100, Qet5100m, Qfe2080fc, Qfe2081fc, Qfe2082fc, Qfe2101, Qfe2550, Qfe3100, Qfe3440fc, Qfe4301, Qfe4302, Qfe4303, Qfe4305, Qfe4308, Qfe4309, Qfe4320, Qfe4373fc, Qfe4455fc, Qfe4465fc, Qln1035bd, Qpa4340, Qpa4360, Qpa5460, Qsw8573, Qtc800h, Qtc800s, Qtc800t, Qtc801s, Rgr7640au, Rsw8577, Sd439, Sd450, Sd636, Sd660, Sd710, Sd712, Sd835, Sd855, Sd8cx, Sdm630, Sdm830, Sdr051, Sdr052, Sdr660, Sdr8150, Sdw2500, Sdw3100, Sdx24, Sdx50m, Smb1351, Smb1355, Smb1358, Smb1360, Smb1380, Smb1381, Smb1390, Smb231, Wcd9306, Wcd9326, Wcd9330, Wcd9335, Wcd9340, Wcd9341, Wcd9360, Wcn3610, Wcn3615, Wcn3620, Wcn3660b, Wcn3680b, Wcn3950, Wcn3980, Wcn3990, Wcn3998, Wcn3999, Wgr7640, Whs9410, Wsa8810, Wsa8815, Wtr2955, Wtr2965, Wtr3925, Wtr4905, Wtr5975
Qualcomm
160 products
Apq8009w
Apq8017
Apq8037
Apq8052
Apq8053
Apq8056
Apq8076
Apq8096au
Aqt1000
Ar8031
Csra6620
Csra6640
Msm8909w
Msm8916
Msm8917
Msm8920
Msm8937
Msm8940
Msm8952
Msm8953
Msm8956
Msm8976
Msm8976sg
Msm8996au
Pm439
Pm660
Pm660a
Pm660l
Pm670
Pm670a
Pm670l
Pm8004
Pm8005
Pm855
Pm855a
Pm855b
Pm855l
Pm855p
Pm8916
Pm8937
Pm8940
Pm8952
Pm8953
Pm8956
Pm8998
Pmd9655
Pmi632
Pmi8937
Pmi8952
Pmi8998
Pmm8996au
Pmx24
Pmx50
Qat3514
Qat3522
Qat3550
Qbt1000
Qbt1500
Qbt2000
Qca6174a
Qca6310
Qca6320
Qca6420
Qca6430
Qca6564a
Qca6564au
Qca6574a
Qca6574au
Qca6584au
Qca8337
Qca9377
Qcc1110
Qcs405
Qcs603
Qcs605
Qet4100
Qet4101
Qet5100
Qet5100m
Qfe2080fc
Qfe2081fc
Qfe2082fc
Qfe2101
Qfe2550
Qfe3100
Qfe3440fc
Qfe4301
Qfe4302
Qfe4303
Qfe4305
Qfe4308
Qfe4309
Qfe4320
Qfe4373fc
Qfe4455fc
Qfe4465fc
Qln1035bd
Qpa4340
Qpa4360
Qpa5460
Qsw8573
Qtc800h
Qtc800s
Qtc800t
Qtc801s
Rgr7640au
Rsw8577
Sd439
Sd450
Sd636
Sd660
Sd710
Sd712
Sd835
Sd855
Sd8cx
Sdm630
Sdm830
Sdr051
Sdr052
Sdr660
Sdr8150
Sdw2500
Sdw3100
Sdx24
Sdx50m
Smb1351
Smb1355
Smb1358
Smb1360
Smb1380
Smb1381
Smb1390
Smb231
Wcd9306
Wcd9326
Wcd9330
Wcd9335
Wcd9340
Wcd9341
Wcd9360
Wcn3610
Wcn3615
Wcn3620
Wcn3660b
Wcn3680b
Wcn3950
Wcn3980
Wcn3990
Wcn3998
Wcn3999
Wgr7640
Whs9410
Wsa8810
Wsa8815
Wtr2955
Wtr2965
Wtr3925
Wtr4905
Wtr5975
Configuration A
160 vulnerable
Vulnerable SoftwareAffected Versions
Apq8009w
All versions
Apq8017
All versions
Apq8037
All versions
Apq8052
All versions
Apq8053
All versions
Apq8056
All versions
Apq8076
All versions
Apq8096au
All versions
Aqt1000
All versions
Ar8031
All versions
Csra6620
All versions
Csra6640
All versions
Msm8909w
All versions
Msm8916
All versions
Msm8917
All versions
Msm8920
All versions
Msm8937
All versions
Msm8940
All versions
Msm8952
All versions
Msm8953
All versions
Msm8956
All versions
Msm8976
All versions
Msm8976sg
All versions
Msm8996au
All versions
Pm439
All versions
Pm660
All versions
Pm660a
All versions
Pm660l
All versions
Pm670
All versions
Pm670a
All versions
Pm670l
All versions
Pm8004
All versions
Pm8005
All versions
Pm855
All versions
Pm855a
All versions
Pm855b
All versions
Pm855l
All versions
Pm855p
All versions
Pm8916
All versions
Pm8937
All versions
Pm8940
All versions
Pm8952
All versions
Pm8953
All versions
Pm8956
All versions
Pm8998
All versions
Pmd9655
All versions
Pmi632
All versions
Pmi8937
All versions
Pmi8952
All versions
Pmi8998
All versions
Pmm8996au
All versions
Pmx24
All versions
Pmx50
All versions
Qat3514
All versions
Qat3522
All versions
Qat3550
All versions
Qbt1000
All versions
Qbt1500
All versions
Qbt2000
All versions
Qca6174a
All versions
Qca6310
All versions
Qca6320
All versions
Qca6420
All versions
Qca6430
All versions
Qca6564a
All versions
Qca6564au
All versions
Qca6574a
All versions
Qca6574au
All versions
Qca6584au
All versions
Qca8337
All versions
Qca9377
All versions
Qcc1110
All versions
Qcs405
All versions
Qcs603
All versions
Qcs605
All versions
Qet4100
All versions
Qet4101
All versions
Qet5100
All versions
Qet5100m
All versions
Qfe2080fc
All versions
Qfe2081fc
All versions
Qfe2082fc
All versions
Qfe2101
All versions
Qfe2550
All versions
Qfe3100
All versions
Qfe3440fc
All versions
Qfe4301
All versions
Qfe4302
All versions
Qfe4303
All versions
Qfe4305
All versions
Qfe4308
All versions
Qfe4309
All versions
Qfe4320
All versions
Qfe4373fc
All versions
Qfe4455fc
All versions
Qfe4465fc
All versions
Qln1035bd
All versions
Qpa4340
All versions
Qpa4360
All versions
Qpa5460
All versions
Qsw8573
All versions
Qtc800h
All versions
Qtc800s
All versions
Qtc800t
All versions
Qtc801s
All versions
Rgr7640au
All versions
Rsw8577
All versions
Sd439
All versions
Sd450
All versions
Sd636
All versions
Sd660
All versions
Sd710
All versions
Sd712
All versions
Sd835
All versions
Sd855
All versions
Sd8cx
All versions
Sdm630
All versions
Sdm830
All versions
Sdr051
All versions
Sdr052
All versions
Sdr660
All versions
Sdr8150
All versions
Sdw2500
All versions
Sdw3100
All versions
Sdx24
All versions
Sdx50m
All versions
Smb1351
All versions
Smb1355
All versions
Smb1358
All versions
Smb1360
All versions
Smb1380
All versions
Smb1381
All versions
Smb1390
All versions
Smb231
All versions
Wcd9306
All versions
Wcd9326
All versions
Wcd9330
All versions
Wcd9335
All versions
Wcd9340
All versions
Wcd9341
All versions
Wcd9360
All versions
Wcn3610
All versions
Wcn3615
All versions
Wcn3620
All versions
Wcn3660b
All versions
Wcn3680b
All versions
Wcn3950
All versions
Wcn3980
All versions
Wcn3990
All versions
Wcn3998
All versions
Wcn3999
All versions
Wgr7640
All versions
Whs9410
All versions
Wsa8810
All versions
Wsa8815
All versions
Wtr2955
All versions
Wtr2965
All versions
Wtr3925
All versions
Wtr4905
All versions
Wtr5975
All versions

Related CWEs

CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
The product contains a code sequence that can run concurrently with other code, and the code sequence requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence that is operating concurrently.

References (3)

Source: product-security@qualcomm.com
Broken Link
Source: nvd@nist.gov
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link

Timeline

No history available yet.