CVE-2020-11225
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD
Description
Out of bound access in WLAN driver due to lack of validation of array length before copying into array in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking
Affected (405)
Products: Qualcomm: Apq8064au, Apq8096au, Aqt1000, Ar8031, Ar8035, Ar9380, Csr8811, Csra6620, Csra6640, Csrb31024, Fsm10055, Fsm10056, Ipq4018, Ipq4019, Ipq4028, Ipq4029, Ipq5010, Ipq5018, Ipq6000, Ipq6005, Ipq6010, Ipq6018, Ipq6028, Ipq8064, Ipq8065, Ipq8068, Ipq8069, Ipq8070, Ipq8070a, Ipq8071, Ipq8071a, Ipq8072, Ipq8072a, Ipq8074, Ipq8074a, Ipq8076, Ipq8076a, Ipq8078, Ipq8078a, Ipq8173, Ipq8174, Mdm9650, Msm8996au, Pm3003a, Pm4125, Pm456, Pm6125, Pm6150, Pm6150a, Pm6150l, Pm6250, Pm6350, Pm640a, Pm640l, Pm640p, Pm660, Pm660a, Pm660l, Pm7150a, Pm7150l, Pm7250, Pm7250b, Pm7350c, Pm8004, Pm8005, Pm8008, Pm8009, Pm8150, Pm8150a, Pm8150b, Pm8150c, Pm8150l, Pm8250, Pm8350, Pm8350b, Pm8350bh, Pm8350bhs, Pm8350c, Pm855, Pm855b, Pm855l, Pm855p, Pm8998, Pmc1000h, Pmd9655, Pmi632, Pmi8998, Pmk7350, Pmk8002, Pmk8003, Pmk8350, Pmm6155au, Pmm8155au, Pmm8195au, Pmm855au, Pmm8996au, Pmp8074, Pmr525, Pmr735a, Pmr735b, Pmx24, Pmx50, Pmx55, Qat3514, Qat3516, Qat3518, Qat3519, Qat3522, Qat3550, Qat3555, Qat5515, Qat5516, Qat5522, Qat5533, Qat5568, Qbt1500, Qbt2000, Qca1062, Qca1064, Qca4024, Qca6175a, Qca6310, Qca6320, Qca6335, Qca6390, Qca6391, Qca6420, Qca6421, Qca6426, Qca6428, Qca6430, Qca6431, Qca6436, Qca6438, Qca6564, Qca6564a, Qca6564au, Qca6574, Qca6574a, Qca6574au, Qca6584au, Qca6595, Qca6595au, Qca6694, Qca6696, Qca7500, Qca8072, Qca8075, Qca8081, Qca8337, Qca9531, Qca9558, Qca9561, Qca9563, Qca9880, Qca9882, Qca9886, Qca9887, Qca9888, Qca9889, Qca9896, Qca9898, Qca9980, Qca9982, Qca9984, Qca9985, Qca9990, Qca9992, Qca9994, Qcm2290, Qcm4290, Qcm6125, Qcn5021, Qcn5022, Qcn5024, Qcn5052, Qcn5054, Qcn5064, Qcn5121, Qcn5122, Qcn5124, Qcn5152, Qcn5154, Qcn5164, Qcn5500, Qcn5502, Qcn5550, Qcn6023, Qcn6024, Qcn7605, Qcn7606, Qcn9000, Qcn9012, Qcn9022, Qcn9024, Qcn9070, Qcn9072, Qcn9074, Qcn9100, Qcs2290, Qcs405, Qcs410, Qcs4290, Qcs610, Qcs6125, Qdm2301, Qdm2302, Qdm2305, Qdm2307, Qdm2308, Qdm2310, Qdm3301, Qdm3302, Qdm4643, Qdm4650, Qdm5579, Qdm5620, Qdm5621, Qdm5650, Qdm5652, Qdm5670, Qdm5671, Qdm5677, Qdm5679, Qet4100, Qet4101, Qet4200aq, Qet5100, Qet5100m, Qet6100, Qet6110, Qfs2530, Qfs2580, Qfs2608, Qfs2630, Qln1020, Qln1021aq, Qln1030, Qln1031, Qln1036aq, Qln4640, Qln4642, Qln4650, Qln5020, Qln5030, Qln5040, Qpa2625, Qpa4340, Qpa4360, Qpa4361, Qpa5461, Qpa5580, Qpa5581, Qpa6560, Qpa8673, Qpa8675, Qpa8686, Qpa8801, Qpa8802, Qpa8803, Qpa8821, Qpa8842, Qpm2630, Qpm4621, Qpm4630, Qpm4640, Qpm4641, Qpm4650, Qpm5541, Qpm5577, Qpm5579, Qpm5620, Qpm5621, Qpm5641, Qpm5657, Qpm5658, Qpm5670, Qpm5677, Qpm5679, Qpm5870, Qpm5875, Qpm6325, Qpm6375, Qpm6582, Qpm6585, Qpm6621, Qpm6670, Qpm8820, Qpm8830, Qpm8870, Qpm8895, Qsm7250, Qsw6310, Qsw8573, Qsw8574, Qtc410s, Qtc800h, Qtc800s, Qtc801s, Qtm525, Qtm527, Rgr7640au, Rsw8577, Sa415m, Sa515m, Sa6145p, Sa6150p, Sa6155, Sa6155p, Sa8150p, Sa8155, Sa8155p, Sa8195p, Sd460, Sd636, Sd660, Sd662, Sd665, Sd670, Sd675, Sd6905g, Sd710, Sd720g, Sd730, Sd750g, Sd765, Sd765g, Sd768g, Sd835, Sd845, Sd855, Sd8655g, Sd8885g, Sd8c, Sd8cx, Sdm630, Sdr051, Sdr052, Sdr425, Sdr660, Sdr660g, Sdr675, Sdr735, Sdr735g, Sdr8150, Sdr8250, Sdr865, Sdx50m, Sdx55, Sdx55m, Sdxr1, Sdxr25g, Sm4125, Sm6250, Sm6250p, Sm7250p, Sm7350, Smb1351, Smb1354, Smb1355, Smb1380, Smb1381, Smb1390, Smb1394, Smb1395, Smb1396, Smb1398, Smb2351, Smr525, Smr526, Smr545, Smr546, Wcd9326, Wcd9335, Wcd9340, Wcd9341, Wcd9370, Wcd9371, Wcd9375, Wcd9380, Wcd9385, Wcn3910, Wcn3950, Wcn3980, Wcn3988, Wcn3990, Wcn3991, Wcn3998, Wcn3999, Wcn6740, Wcn6750, Wcn6850, Wcn6851, Wcn6855, Wcn6856, Wgr7640, Wsa8810, Wsa8815, Wsa8830, Wsa8835, Wtr2965, Wtr3925, Wtr4905, Wtr5975, Wtr6955
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions |
Related CWEs
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.
CWE-787
Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
References (3)
Source: product-security@qualcomm.com
Broken Link
Source: nvd@nist.gov
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Timeline
No history available yet.