CVE-2020-11205
Severity Score
7.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
u'Possible integer overflow to heap overflow while processing command due to lack of check of packet length received' in Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile in QSM8350, SA6145P, SA6150P, SA6155, SA6155P, SA8150P, SA8155P, SA8195P, SDX55M, SM8250, SM8350, SM8350P, SXR2130, SXR2130P
Un posible desbordamiento de enteros para un desbordamiento de pila mientras se procesa el comando debido a una falta de comprobaciĆ³n de la longitud del paquete recibido en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Mobile en versiones QSM8350, SA6145P, SA6150P, SA6155, SA6155P, SA8150P, SA8155P, SA8195P, SDX55M, SM8250, SM8350, SM8350P, SXR2130, SXR2130P
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2020-03-31 CVE Reserved
- 2020-11-12 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-190: Integer Overflow or Wraparound
- CWE-787: Out-of-bounds Write
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.qualcomm.com/company/product-security/bulletins/november-2020-bulletin | 2021-07-21 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Qualcomm Search vendor "Qualcomm" | Qsm8350 Firmware Search vendor "Qualcomm" for product "Qsm8350 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qsm8350 Search vendor "Qualcomm" for product "Qsm8350" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa6145p Firmware Search vendor "Qualcomm" for product "Sa6145p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa6145p Search vendor "Qualcomm" for product "Sa6145p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa6150p Firmware Search vendor "Qualcomm" for product "Sa6150p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa6150p Search vendor "Qualcomm" for product "Sa6150p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa6155 Firmware Search vendor "Qualcomm" for product "Sa6155 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa6155 Search vendor "Qualcomm" for product "Sa6155" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa6155p Firmware Search vendor "Qualcomm" for product "Sa6155p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa6155p Search vendor "Qualcomm" for product "Sa6155p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa8150p Firmware Search vendor "Qualcomm" for product "Sa8150p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa8150p Search vendor "Qualcomm" for product "Sa8150p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa8155p Firmware Search vendor "Qualcomm" for product "Sa8155p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa8155p Search vendor "Qualcomm" for product "Sa8155p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa8195p Firmware Search vendor "Qualcomm" for product "Sa8195p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa8195p Search vendor "Qualcomm" for product "Sa8195p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdx55m Firmware Search vendor "Qualcomm" for product "Sdx55m Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdx55m Search vendor "Qualcomm" for product "Sdx55m" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm8250 Firmware Search vendor "Qualcomm" for product "Sm8250 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm8250 Search vendor "Qualcomm" for product "Sm8250" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm8350 Firmware Search vendor "Qualcomm" for product "Sm8350 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm8350 Search vendor "Qualcomm" for product "Sm8350" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm8350p Firmware Search vendor "Qualcomm" for product "Sm8350p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm8350p Search vendor "Qualcomm" for product "Sm8350p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sxr2130 Firmware Search vendor "Qualcomm" for product "Sxr2130 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sxr2130 Search vendor "Qualcomm" for product "Sxr2130" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sxr2130p Firmware Search vendor "Qualcomm" for product "Sxr2130p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sxr2130p Search vendor "Qualcomm" for product "Sxr2130p" | - | - |
Safe
|