CVE-2020-11254
5.5
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Exploitability: 1.8 / Impact: 3.6
Source: NVD
Description
Memory corruption during buffer allocation due to dereferencing session ctx pointer without checking if pointer is valid in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile
Affected (121)
Products: Qualcomm: Pm6150a, Pm6150l, Pm6350, Pm660, Pm660l, Pm7250b, Pm8008, Pm8009, Pm8350, Pm8350b, Pm8350bh, Pm8350c, Pmk8003, Pmk8350, Pmm6155au, Pmm8155au, Pmm8195au, Pmr735a, Pmr735b, Qat3516, Qat3518, Qat3519, Qat3555, Qat5515, Qat5516, Qat5522, Qat5568, Qbt1500, Qca6574au, Qca6696, Qdm3301, Qdm4643, Qdm4650, Qdm5620, Qdm5621, Qdm5670, Qdm5671, Qet5100, Qet5100m, Qet6100, Qet6105, Qet6110, Qfs2530, Qfs2580, Qfs2608, Qfs2630, Qln4642, Qln4650, Qln5020, Qln5030, Qln5040, Qpa2625, Qpa5461, Qpa5580, Qpa5581, Qpa8801, Qpa8802, Qpa8803, Qpa8821, Qpa8842, Qpm4621, Qpm4630, Qpm4640, Qpm4641, Qpm4650, Qpm5621, Qpm5641, Qpm5670, Qpm5677, Qpm5679, Qpm5870, Qpm5875, Qpm6585, Qpm6621, Qpm6670, Qpm8820, Qpm8870, Qtc800h, Qtc800s, Qtc801s, Qtm525, Sa6145p, Sa6150p, Sa6155p, Sa8150p, Sa8155p, Sa8195p, Sd480, Sd670, Sd710, Sd888, Sd888 5g, Sdr660, Sdr660g, Sdr735, Sdr735g, Sdr865, Sdxr1, Smb1351, Smb1355, Smb1396, Smb1398, Smr526, Smr545, Smr546, Wcd9326, Wcd9341, Wcd9370, Wcd9375, Wcd9380, Wcd9385, Wcn3980, Wcn3988, Wcn3990, Wcn3991, Wcn6850, Wcn6851, Wcn6855, Wcn6856, Wsa8830, Wsa8835
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions | |
| All versions |
Related CWEs
References (2)
Source: product-security@qualcomm.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Timeline
No history available yet.