CVE-2020-11207
Severity Score
7.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Buffer overflow in LibFastCV library due to improper size checks with respect to buffer length' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8052, APQ8056, APQ8076, APQ8096, APQ8096SG, APQ8098, MDM9655, MSM8952, MSM8956, MSM8976, MSM8976SG, MSM8996, MSM8996SG, MSM8998, QCM4290, QCM6125, QCS410, QCS4290, QCS610, QCS6125, QSM8250, SA6145P, SA6150P, SA6155, SA6155P, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SDA640, SDA660, SDA845, SDA855, SDM640, SDM660, SDM830, SDM845, SDM850, SDX50M, SDX55, SDX55M, SM4250, SM4250P, SM6115, SM6115P, SM6125, SM6150, SM6150P, SM6250, SM6250P, SM6350, SM7125, SM7150, SM7150P, SM7225, SM7250, SM7250P, SM8150, SM8150P, SM8250, SXR2130, SXR2130P
Un desbordamiento del búfer en la biblioteca LibFastCV debido a comprobaciones de tamaño inapropiadas con respecto a la longitud del búfer en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile en versiones APQ8052, APQ8056, APQ8076, APQ8096, APQ8096SG, APQ8098, MDM9655, MSM8952, MSM8956, MSM8976, MSM8976SG, MSM8996, MSM8996SG, MSM8998, QCM4290, QCM6125, QCS410, QCS4290, QCS610, QCS6125, QSM8250, SA6145P, SA6150P, SA6155, SA6155P, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SDA640, SDA660, SDA845, SDA855, SDM640, SDM660, SDM830, SDM845, SDM850, SDX50M, SDX55, SDX55M, SM4250, SM4250P, SM6115, SM6115P, SM6125, SM6150, SM6150P, SM6250, SM6250P, SM6350, SM7125, SM7150, SM7150P, SM7225, SM7250, SM7250P, SM8150, SM8150P, SM8250, SXR2130, SXR2130P
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2020-03-31 CVE Reserved
- 2020-11-12 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-04 CVE Updated
- 2024-08-04 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| https://blog.checkpoint.com/2020/08/06/achilles-small-chip-big-peril | Third Party Advisory |
| URL | Date | SRC |
|---|---|---|
| https://research.checkpoint.com/2021/pwn2own-qualcomm-dsp | 2024-08-04 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.qualcomm.com/company/product-security/bulletins/november-2020-bulletin | 2022-10-19 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Qualcomm Search vendor "Qualcomm" | Apq8052 Firmware Search vendor "Qualcomm" for product "Apq8052 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Apq8052 Search vendor "Qualcomm" for product "Apq8052" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Apq8056 Firmware Search vendor "Qualcomm" for product "Apq8056 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Apq8056 Search vendor "Qualcomm" for product "Apq8056" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Apq8076 Firmware Search vendor "Qualcomm" for product "Apq8076 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Apq8076 Search vendor "Qualcomm" for product "Apq8076" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Apq8096 Firmware Search vendor "Qualcomm" for product "Apq8096 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Apq8096 Search vendor "Qualcomm" for product "Apq8096" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Apq8098 Firmware Search vendor "Qualcomm" for product "Apq8098 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Apq8098 Search vendor "Qualcomm" for product "Apq8098" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Mdm9655 Firmware Search vendor "Qualcomm" for product "Mdm9655 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Mdm9655 Search vendor "Qualcomm" for product "Mdm9655" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Msm8952 Firmware Search vendor "Qualcomm" for product "Msm8952 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Msm8952 Search vendor "Qualcomm" for product "Msm8952" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Msm8956 Firmware Search vendor "Qualcomm" for product "Msm8956 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Msm8956 Search vendor "Qualcomm" for product "Msm8956" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Msm8976 Firmware Search vendor "Qualcomm" for product "Msm8976 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Msm8976 Search vendor "Qualcomm" for product "Msm8976" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Msm8976sg Firmware Search vendor "Qualcomm" for product "Msm8976sg Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Msm8976sg Search vendor "Qualcomm" for product "Msm8976sg" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Msm8996 Firmware Search vendor "Qualcomm" for product "Msm8996 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Msm8996 Search vendor "Qualcomm" for product "Msm8996" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Msm8996sg Firmware Search vendor "Qualcomm" for product "Msm8996sg Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Msm8996sg Search vendor "Qualcomm" for product "Msm8996sg" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Msm8998 Firmware Search vendor "Qualcomm" for product "Msm8998 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Msm8998 Search vendor "Qualcomm" for product "Msm8998" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qcm4290 Firmware Search vendor "Qualcomm" for product "Qcm4290 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qcm4290 Search vendor "Qualcomm" for product "Qcm4290" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qcm6125 Firmware Search vendor "Qualcomm" for product "Qcm6125 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qcm6125 Search vendor "Qualcomm" for product "Qcm6125" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qcs410 Firmware Search vendor "Qualcomm" for product "Qcs410 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qcs410 Search vendor "Qualcomm" for product "Qcs410" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qcs4290 Firmware Search vendor "Qualcomm" for product "Qcs4290 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qcs4290 Search vendor "Qualcomm" for product "Qcs4290" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qcs610 Firmware Search vendor "Qualcomm" for product "Qcs610 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qcs610 Search vendor "Qualcomm" for product "Qcs610" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qcs6125 Firmware Search vendor "Qualcomm" for product "Qcs6125 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qcs6125 Search vendor "Qualcomm" for product "Qcs6125" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Qsm8250 Firmware Search vendor "Qualcomm" for product "Qsm8250 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Qsm8250 Search vendor "Qualcomm" for product "Qsm8250" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa6145p Firmware Search vendor "Qualcomm" for product "Sa6145p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa6145p Search vendor "Qualcomm" for product "Sa6145p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa6150p Firmware Search vendor "Qualcomm" for product "Sa6150p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa6150p Search vendor "Qualcomm" for product "Sa6150p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa6155 Firmware Search vendor "Qualcomm" for product "Sa6155 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa6155 Search vendor "Qualcomm" for product "Sa6155" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa6155p Firmware Search vendor "Qualcomm" for product "Sa6155p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa6155p Search vendor "Qualcomm" for product "Sa6155p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa8150p Firmware Search vendor "Qualcomm" for product "Sa8150p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa8150p Search vendor "Qualcomm" for product "Sa8150p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa8155 Firmware Search vendor "Qualcomm" for product "Sa8155 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa8155 Search vendor "Qualcomm" for product "Sa8155" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa8155p Firmware Search vendor "Qualcomm" for product "Sa8155p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa8155p Search vendor "Qualcomm" for product "Sa8155p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sa8195p Firmware Search vendor "Qualcomm" for product "Sa8195p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sa8195p Search vendor "Qualcomm" for product "Sa8195p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sc7180 Firmware Search vendor "Qualcomm" for product "Sc7180 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sc7180 Search vendor "Qualcomm" for product "Sc7180" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sda640 Firmware Search vendor "Qualcomm" for product "Sda640 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sda640 Search vendor "Qualcomm" for product "Sda640" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sda660 Firmware Search vendor "Qualcomm" for product "Sda660 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sda660 Search vendor "Qualcomm" for product "Sda660" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sda845 Firmware Search vendor "Qualcomm" for product "Sda845 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sda845 Search vendor "Qualcomm" for product "Sda845" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sda855 Firmware Search vendor "Qualcomm" for product "Sda855 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sda855 Search vendor "Qualcomm" for product "Sda855" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdm640 Firmware Search vendor "Qualcomm" for product "Sdm640 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdm640 Search vendor "Qualcomm" for product "Sdm640" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdm660 Firmware Search vendor "Qualcomm" for product "Sdm660 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdm660 Search vendor "Qualcomm" for product "Sdm660" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdm830 Firmware Search vendor "Qualcomm" for product "Sdm830 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdm830 Search vendor "Qualcomm" for product "Sdm830" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdm845 Firmware Search vendor "Qualcomm" for product "Sdm845 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdm845 Search vendor "Qualcomm" for product "Sdm845" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdm850 Firmware Search vendor "Qualcomm" for product "Sdm850 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdm850 Search vendor "Qualcomm" for product "Sdm850" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdx50m Firmware Search vendor "Qualcomm" for product "Sdx50m Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdx50m Search vendor "Qualcomm" for product "Sdx50m" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdx55 Firmware Search vendor "Qualcomm" for product "Sdx55 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdx55 Search vendor "Qualcomm" for product "Sdx55" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdx55m Firmware Search vendor "Qualcomm" for product "Sdx55m Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdx55m Search vendor "Qualcomm" for product "Sdx55m" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm4250 Firmware Search vendor "Qualcomm" for product "Sm4250 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm4250 Search vendor "Qualcomm" for product "Sm4250" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm4250p Firmware Search vendor "Qualcomm" for product "Sm4250p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm4250p Search vendor "Qualcomm" for product "Sm4250p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6115 Firmware Search vendor "Qualcomm" for product "Sm6115 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6115 Search vendor "Qualcomm" for product "Sm6115" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6115p Firmware Search vendor "Qualcomm" for product "Sm6115p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6115p Search vendor "Qualcomm" for product "Sm6115p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6125 Firmware Search vendor "Qualcomm" for product "Sm6125 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6125 Search vendor "Qualcomm" for product "Sm6125" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6150 Firmware Search vendor "Qualcomm" for product "Sm6150 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6150 Search vendor "Qualcomm" for product "Sm6150" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6150p Firmware Search vendor "Qualcomm" for product "Sm6150p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6150p Search vendor "Qualcomm" for product "Sm6150p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6250 Firmware Search vendor "Qualcomm" for product "Sm6250 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6250 Search vendor "Qualcomm" for product "Sm6250" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6250p Firmware Search vendor "Qualcomm" for product "Sm6250p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6250p Search vendor "Qualcomm" for product "Sm6250p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6350 Firmware Search vendor "Qualcomm" for product "Sm6350 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6350 Search vendor "Qualcomm" for product "Sm6350" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm7125 Firmware Search vendor "Qualcomm" for product "Sm7125 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm7125 Search vendor "Qualcomm" for product "Sm7125" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm7150 Firmware Search vendor "Qualcomm" for product "Sm7150 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm7150 Search vendor "Qualcomm" for product "Sm7150" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm7150p Firmware Search vendor "Qualcomm" for product "Sm7150p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm7150p Search vendor "Qualcomm" for product "Sm7150p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm7225 Firmware Search vendor "Qualcomm" for product "Sm7225 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm7225 Search vendor "Qualcomm" for product "Sm7225" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm7250 Firmware Search vendor "Qualcomm" for product "Sm7250 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm7250 Search vendor "Qualcomm" for product "Sm7250" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm7250p Firmware Search vendor "Qualcomm" for product "Sm7250p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm7250p Search vendor "Qualcomm" for product "Sm7250p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm8150 Firmware Search vendor "Qualcomm" for product "Sm8150 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm8150 Search vendor "Qualcomm" for product "Sm8150" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm8150p Firmware Search vendor "Qualcomm" for product "Sm8150p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm8150p Search vendor "Qualcomm" for product "Sm8150p" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm8250 Firmware Search vendor "Qualcomm" for product "Sm8250 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm8250 Search vendor "Qualcomm" for product "Sm8250" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sxr2130 Firmware Search vendor "Qualcomm" for product "Sxr2130 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sxr2130 Search vendor "Qualcomm" for product "Sxr2130" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sxr2130p Firmware Search vendor "Qualcomm" for product "Sxr2130p Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sxr2130p Search vendor "Qualcomm" for product "Sxr2130p" | - | - |
Safe
|