CVE-2020-11120
Severity Score
7.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
u'Calling thread may free the data buffer pointer that was passed to the callback and later when event loop executes the callback, data buffer may not be valid and will lead to use after free scenario' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8096AU, APQ8098, Bitra, Kamorta, MSM8917, MSM8953, MSM8998, QCM2150, QCS405, QCS605, QM215, Rennell, Saipan, SDM429, SDM439, SDM450, SDM632, SM6150, SM7150, SM8150, SM8250, SXR2130
Al llamar un subproceso (hilo) puede liberar el puntero del búfer de datos que fue pasado a la devolución de llamada y, más tarde, cuando el bucle de eventos ejecuta la devolución de llamada, el búfer de datos puede no ser válido y conllevaría a un escenario de uso de la memoria previamente liberada en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables en versiones APQ8096AU, APQ8098, Bitra, Kamorta, MSM8917, MSM8953, MSM8998, QCM2150, QCS405, QCS605, QM215, Rennell, Saipan, SDM429, SDM439, SDM450, SDM632, SM6150, SM7150, SM8150, SM8250, SXR2130
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2020-03-31 CVE Reserved
- 2020-09-08 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-416: Use After Free
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin | Broken Link |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin | 2020-09-14 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Qualcomm Search vendor "Qualcomm" | Apq8096au Firmware Search vendor "Qualcomm" for product "Apq8096au Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Apq8096au Search vendor "Qualcomm" for product "Apq8096au" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Apq8098 Firmware Search vendor "Qualcomm" for product "Apq8098 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Apq8098 Search vendor "Qualcomm" for product "Apq8098" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Bitra Firmware Search vendor "Qualcomm" for product "Bitra Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Bitra Search vendor "Qualcomm" for product "Bitra" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Kamorta Firmware Search vendor "Qualcomm" for product "Kamorta Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Kamorta Search vendor "Qualcomm" for product "Kamorta" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Msm8917 Firmware Search vendor "Qualcomm" for product "Msm8917 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Msm8917 Search vendor "Qualcomm" for product "Msm8917" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Msm8953 Firmware Search vendor "Qualcomm" for product "Msm8953 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Msm8953 Search vendor "Qualcomm" for product "Msm8953" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Msm8998 Firmware Search vendor "Qualcomm" for product "Msm8998 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Msm8998 Search vendor "Qualcomm" for product "Msm8998" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qcm2150 Firmware Search vendor "Qualcomm" for product "Qcm2150 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qcm2150 Search vendor "Qualcomm" for product "Qcm2150" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qcs405 Firmware Search vendor "Qualcomm" for product "Qcs405 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qcs405 Search vendor "Qualcomm" for product "Qcs405" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qcs605 Firmware Search vendor "Qualcomm" for product "Qcs605 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qcs605 Search vendor "Qualcomm" for product "Qcs605" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qm215 Firmware Search vendor "Qualcomm" for product "Qm215 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qm215 Search vendor "Qualcomm" for product "Qm215" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Rennell Firmware Search vendor "Qualcomm" for product "Rennell Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Rennell Search vendor "Qualcomm" for product "Rennell" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Saipan Firmware Search vendor "Qualcomm" for product "Saipan Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Saipan Search vendor "Qualcomm" for product "Saipan" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdm429 Firmware Search vendor "Qualcomm" for product "Sdm429 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdm429 Search vendor "Qualcomm" for product "Sdm429" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdm439 Firmware Search vendor "Qualcomm" for product "Sdm439 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdm439 Search vendor "Qualcomm" for product "Sdm439" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdm450 Firmware Search vendor "Qualcomm" for product "Sdm450 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdm450 Search vendor "Qualcomm" for product "Sdm450" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdm632 Firmware Search vendor "Qualcomm" for product "Sdm632 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdm632 Search vendor "Qualcomm" for product "Sdm632" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6150 Firmware Search vendor "Qualcomm" for product "Sm6150 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6150 Search vendor "Qualcomm" for product "Sm6150" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm7150 Firmware Search vendor "Qualcomm" for product "Sm7150 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm7150 Search vendor "Qualcomm" for product "Sm7150" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm8150 Firmware Search vendor "Qualcomm" for product "Sm8150 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm8150 Search vendor "Qualcomm" for product "Sm8150" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm8250 Firmware Search vendor "Qualcomm" for product "Sm8250 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm8250 Search vendor "Qualcomm" for product "Sm8250" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sxr2130 Firmware Search vendor "Qualcomm" for product "Sxr2130 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sxr2130 Search vendor "Qualcomm" for product "Sxr2130" | - | - |
Safe
|