CVE-2020-11127
Severity Score
7.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
u'Integer overflow can cause a buffer overflow due to lack of table length check in the extensible boot Loader during the validation of security metadata while processing objects to be loaded' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9205, QCM4290, QCS405, QCS410, QCS4290, QCS610, QSM8250, SA415M, SA515M, SA6145P, SA6150P, SA6155, SA6155P, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SC8180X, SC8180X+SDX55, SC8180XP, SDA640, SDA845, SDA855, SDM1000, SDM640, SDM830, SDM845, SDM850, SDX24, SDX50M, SDX55, SDX55M, SM4125, SM4250, SM4250P, SM6115, SM6115P, SM6150, SM6150P, SM6250, SM6250P, SM6350, SM7125, SM7150, SM7150P, SM7225, SM7250, SM7250P, SM8150, SM8150P, SM8250, SXR2130, SXR2130P
Un desbordamiento de enteros puede causar un desbordamiento del búfer debido a una falta de comprobación de la longitud de la tabla en el cargador de arranque extensible durante la comprobación de los metadatos de seguridad mientras se procesan los objetos a ser cargados en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Móvil, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking en versiones MDM9205, QCM4290, QCS405, QCS410, QCS4290, QCS610, QSM8250, SA415M, SA515M, SA6145P, SA6150P, SA6155, SA6155P, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SC8180X, SC8180X+SDX55, SC8180XP, SDA640, SDA845, SDA855, SDM1000, SDM640, SDM830, SDM845, SDM850, SDX24, SDX50M, SDX55, SDX55M, SM4125, SM4250, SM4250P, SM6115, SM6115P, SM6150, SM6150P, SM6250, SM6250P, SM6350, SM7125, SM7150, SM7150P, SM7225, SM7250, SM7250P, SM8150, SM8150P, SM8250, SXR2130, SXR2130P
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2020-03-31 CVE Reserved
- 2020-11-12 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-190: Integer Overflow or Wraparound
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.qualcomm.com/company/product-security/bulletins/november-2020-bulletin | 2020-11-19 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Qualcomm Search vendor "Qualcomm" | Mdm9205 Firmware Search vendor "Qualcomm" for product "Mdm9205 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Mdm9205 Search vendor "Qualcomm" for product "Mdm9205" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qcm4290 Firmware Search vendor "Qualcomm" for product "Qcm4290 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qcm4290 Search vendor "Qualcomm" for product "Qcm4290" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qcs405 Firmware Search vendor "Qualcomm" for product "Qcs405 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qcs405 Search vendor "Qualcomm" for product "Qcs405" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qcs410 Firmware Search vendor "Qualcomm" for product "Qcs410 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qcs410 Search vendor "Qualcomm" for product "Qcs410" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qcs4290 Firmware Search vendor "Qualcomm" for product "Qcs4290 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qcs4290 Search vendor "Qualcomm" for product "Qcs4290" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qcs610 Firmware Search vendor "Qualcomm" for product "Qcs610 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qcs610 Search vendor "Qualcomm" for product "Qcs610" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qsm8250 Firmware Search vendor "Qualcomm" for product "Qsm8250 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qsm8250 Search vendor "Qualcomm" for product "Qsm8250" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa415m Firmware Search vendor "Qualcomm" for product "Sa415m Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa415m Search vendor "Qualcomm" for product "Sa415m" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa515m Firmware Search vendor "Qualcomm" for product "Sa515m Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa515m Search vendor "Qualcomm" for product "Sa515m" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa6145p Firmware Search vendor "Qualcomm" for product "Sa6145p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa6145p Search vendor "Qualcomm" for product "Sa6145p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa6150p Firmware Search vendor "Qualcomm" for product "Sa6150p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa6150p Search vendor "Qualcomm" for product "Sa6150p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa6155 Firmware Search vendor "Qualcomm" for product "Sa6155 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa6155 Search vendor "Qualcomm" for product "Sa6155" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa6155p Firmware Search vendor "Qualcomm" for product "Sa6155p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa6155p Search vendor "Qualcomm" for product "Sa6155p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa8150p Firmware Search vendor "Qualcomm" for product "Sa8150p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa8150p Search vendor "Qualcomm" for product "Sa8150p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa8155 Firmware Search vendor "Qualcomm" for product "Sa8155 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa8155 Search vendor "Qualcomm" for product "Sa8155" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa8155p Firmware Search vendor "Qualcomm" for product "Sa8155p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa8155p Search vendor "Qualcomm" for product "Sa8155p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa8195p Firmware Search vendor "Qualcomm" for product "Sa8195p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa8195p Search vendor "Qualcomm" for product "Sa8195p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sc7180 Firmware Search vendor "Qualcomm" for product "Sc7180 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sc7180 Search vendor "Qualcomm" for product "Sc7180" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sc8180x Firmware Search vendor "Qualcomm" for product "Sc8180x Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sc8180x Search vendor "Qualcomm" for product "Sc8180x" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdx55 Firmware Search vendor "Qualcomm" for product "Sdx55 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdx55 Search vendor "Qualcomm" for product "Sdx55" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sc8180xp Firmware Search vendor "Qualcomm" for product "Sc8180xp Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sc8180xp Search vendor "Qualcomm" for product "Sc8180xp" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sda640 Firmware Search vendor "Qualcomm" for product "Sda640 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sda640 Search vendor "Qualcomm" for product "Sda640" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sda845 Firmware Search vendor "Qualcomm" for product "Sda845 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sda845 Search vendor "Qualcomm" for product "Sda845" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sda855 Firmware Search vendor "Qualcomm" for product "Sda855 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sda855 Search vendor "Qualcomm" for product "Sda855" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdm1000 Firmware Search vendor "Qualcomm" for product "Sdm1000 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdm1000 Search vendor "Qualcomm" for product "Sdm1000" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdm640 Firmware Search vendor "Qualcomm" for product "Sdm640 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdm640 Search vendor "Qualcomm" for product "Sdm640" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdm830 Firmware Search vendor "Qualcomm" for product "Sdm830 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdm830 Search vendor "Qualcomm" for product "Sdm830" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdm845 Firmware Search vendor "Qualcomm" for product "Sdm845 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdm845 Search vendor "Qualcomm" for product "Sdm845" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdm850 Firmware Search vendor "Qualcomm" for product "Sdm850 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdm850 Search vendor "Qualcomm" for product "Sdm850" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdx24 Firmware Search vendor "Qualcomm" for product "Sdx24 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdx24 Search vendor "Qualcomm" for product "Sdx24" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdx50m Firmware Search vendor "Qualcomm" for product "Sdx50m Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdx50m Search vendor "Qualcomm" for product "Sdx50m" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdx55 Firmware Search vendor "Qualcomm" for product "Sdx55 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdx55 Search vendor "Qualcomm" for product "Sdx55" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdx55m Firmware Search vendor "Qualcomm" for product "Sdx55m Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdx55m Search vendor "Qualcomm" for product "Sdx55m" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm4125 Firmware Search vendor "Qualcomm" for product "Sm4125 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm4125 Search vendor "Qualcomm" for product "Sm4125" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm4250 Firmware Search vendor "Qualcomm" for product "Sm4250 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm4250 Search vendor "Qualcomm" for product "Sm4250" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm4250p Firmware Search vendor "Qualcomm" for product "Sm4250p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm4250p Search vendor "Qualcomm" for product "Sm4250p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6115 Firmware Search vendor "Qualcomm" for product "Sm6115 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6115 Search vendor "Qualcomm" for product "Sm6115" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6115p Firmware Search vendor "Qualcomm" for product "Sm6115p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6115p Search vendor "Qualcomm" for product "Sm6115p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6150 Firmware Search vendor "Qualcomm" for product "Sm6150 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6150 Search vendor "Qualcomm" for product "Sm6150" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6150p Firmware Search vendor "Qualcomm" for product "Sm6150p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6150p Search vendor "Qualcomm" for product "Sm6150p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6250 Firmware Search vendor "Qualcomm" for product "Sm6250 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6250 Search vendor "Qualcomm" for product "Sm6250" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6250p Firmware Search vendor "Qualcomm" for product "Sm6250p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6250p Search vendor "Qualcomm" for product "Sm6250p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6350 Firmware Search vendor "Qualcomm" for product "Sm6350 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6350 Search vendor "Qualcomm" for product "Sm6350" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm7125 Firmware Search vendor "Qualcomm" for product "Sm7125 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm7125 Search vendor "Qualcomm" for product "Sm7125" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm7150 Firmware Search vendor "Qualcomm" for product "Sm7150 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm7150 Search vendor "Qualcomm" for product "Sm7150" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm7150p Firmware Search vendor "Qualcomm" for product "Sm7150p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm7150p Search vendor "Qualcomm" for product "Sm7150p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm7225 Firmware Search vendor "Qualcomm" for product "Sm7225 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm7225 Search vendor "Qualcomm" for product "Sm7225" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm7250 Firmware Search vendor "Qualcomm" for product "Sm7250 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm7250 Search vendor "Qualcomm" for product "Sm7250" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm7250p Firmware Search vendor "Qualcomm" for product "Sm7250p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm7250p Search vendor "Qualcomm" for product "Sm7250p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm8150 Firmware Search vendor "Qualcomm" for product "Sm8150 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm8150 Search vendor "Qualcomm" for product "Sm8150" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm8150p Firmware Search vendor "Qualcomm" for product "Sm8150p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm8150p Search vendor "Qualcomm" for product "Sm8150p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm8250 Firmware Search vendor "Qualcomm" for product "Sm8250 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm8250 Search vendor "Qualcomm" for product "Sm8250" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sxr2130 Firmware Search vendor "Qualcomm" for product "Sxr2130 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sxr2130 Search vendor "Qualcomm" for product "Sxr2130" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sxr2130p Firmware Search vendor "Qualcomm" for product "Sxr2130p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sxr2130p Search vendor "Qualcomm" for product "Sxr2130p" | - | - |
Safe
|