CVE-2020-11200
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD
Description
Buffer over-read while parsing RPS due to lack of check of input validation on values received from user side. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
Affected (330)
Products: Qualcomm: Apq8053, Apq8064au, Apq8096au, Aqt1000, Ar8151, Mdm9640, Mdm9650, Msm8953, Msm8996au, Pm3003a, Pm4125, Pm456, Pm6125, Pm6150, Pm6150a, Pm6150l, Pm6250, Pm6350, Pm640a, Pm640l, Pm640p, Pm660, Pm660a, Pm660l, Pm670, Pm670a, Pm670l, Pm7150a, Pm7150l, Pm7250, Pm7250b, Pm8004, Pm8005, Pm8008, Pm8009, Pm8019, Pm8150, Pm8150a, Pm8150b, Pm8150c, Pm8150l, Pm8250, Pm845, Pm855, Pm855a, Pm855b, Pm855l, Pm855p, Pm8953, Pm8996, Pm8998, Pmc1000h, Pmc7180, Pmd9655, Pme605, Pmi632, Pmi8952, Pmi8994, Pmi8996, Pmi8998, Pmk8001, Pmk8002, Pmk8003, Pmm6155au, Pmm8155au, Pmm8195au, Pmm855au, Pmm8996au, Pmr525, Pmr735a, Pmr735b, Pmx50, Pmx55, Qat3514, Qat3516, Qat3518, Qat3519, Qat3522, Qat3550, Qat3555, Qat5515, Qat5516, Qat5522, Qat5533, Qbt1000, Qbt1500, Qbt2000, Qca4020, Qca6174a, Qca6175a, Qca6310, Qca6320, Qca6335, Qca6390, Qca6391, Qca6420, Qca6421, Qca6426, Qca6430, Qca6431, Qca6436, Qca6564, Qca6564a, Qca6564au, Qca6574, Qca6574a, Qca6574au, Qca6595, Qca6595au, Qca6694, Qca6694au, Qca6696, Qca9379, Qcc112, Qcm2290, Qcm4290, Qcm6125, Qcs2290, Qcs410, Qcs4290, Qcs603, Qcs605, Qcs610, Qcs6125, Qdm2301, Qdm2302, Qdm2305, Qdm2307, Qdm2308, Qdm2310, Qdm3301, Qdm5620, Qdm5621, Qdm5650, Qdm5652, Qdm5670, Qdm5671, Qdm5677, Qdm5679, Qet4100, Qet4101, Qet4200aq, Qet5100, Qet6100, Qet6110, Qfe2080fc, Qfe2081fc, Qfe2082fc, Qfe2101, Qfe2520, Qfe2550, Qfe3100, Qfe3340, Qfe3440fc, Qfe4320, Qfe4455fc, Qfe4465fc, Qfs2530, Qfs2580, Qln1020, Qln1021aq, Qln1030, Qln1031, Qln1035bd, Qln1036aq, Qln4640, Qln4642, Qln4650, Qln5020, Qln5030, Qln5040, Qpa2625, Qpa4340, Qpa4360, Qpa4361, Qpa5373, Qpa5460, Qpa5580, Qpa5581, Qpa6560, Qpa8673, Qpa8675, Qpa8686, Qpa8688, Qpa8801, Qpa8802, Qpa8803, Qpa8821, Qpa8842, Qpm2630, Qpm4650, Qpm5620, Qpm5621, Qpm5657, Qpm5658, Qpm5670, Qpm5677, Qpm5679, Qpm6582, Qpm6585, Qpm8820, Qpm8830, Qpm8870, Qpm8895, Qsm7250, Qsm8250, Qsw6310, Qsw8573, Qsw8574, Qtc410s, Qtc800h, Qtc800s, Qtc800t, Qtc801s, Qtm525, Rgr7640au, Rsw8577, Sa6145p, Sa6150p, Sa6155, Sa6155p, Sa8150p, Sa8155, Sa8155p, Sa8195p, Sc8180x+sdx55, Sd450, Sd455, Sd460, Sd632, Sd636, Sd660, Sd662, Sd665, Sd670, Sd675, Sd6905g, Sd710, Sd712, Sd720g, Sd730, Sd750g, Sd765, Sd765g, Sd768g, Sd7c, Sd820, Sd821, Sd835, Sd845, Sd850, Sd855, Sd8655g, Sd8c, Sd8cx, Sdm630, Sdm830, Sdr051, Sdr052, Sdr425, Sdr660, Sdr660g, Sdr675, Sdr735, Sdr735g, Sdr8150, Sdr8250, Sdr845, Sdr865, Sdx50m, Sdx55, Sdx55m, Sdxr1, Sdxr25g, Sm4125, Sm4350, Sm6250, Sm6250p, Sm7250p, Smb1350, Smb1351, Smb1354, Smb1355, Smb1358, Smb1380, Smb1381, Smb1390, Smb1395, Smb1396, Smb2351, Smr525, Smr526, Wcd9326, Wcd9335, Wcd9340, Wcd9341, Wcd9360, Wcd9370, Wcd9371, Wcd9375, Wcd9380, Wcd9385, Wcn3615, Wcn3660, Wcn3660b, Wcn3680b, Wcn3910, Wcn3950, Wcn3980, Wcn3988, Wcn3990, Wcn3991, Wcn3998, Wcn6750, Wcn6850, Wcn6851, Wgr7640, Whs9410, Wsa8810, Wsa8815, Wsa8830, Wsa8835, Wtr2955, Wtr2965, Wtr3905, Wtr3925, Wtr3950, Wtr4905, Wtr5975, Wtr6955
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions |
Related CWEs
CWE-125
Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.
CWE-20
Improper Input Validation
The product receives input or data, but it does
not validate or incorrectly validates that the input has the
properties that are required to process the data safely and
correctly.
References (3)
Source: product-security@qualcomm.com
Broken Link
Source: nvd@nist.gov
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Timeline
No history available yet.