CVE-2020-11207

Severity Score

7.8

*CVSS v3.1

Exploit Likelihood

< 1%

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Buffer overflow in LibFastCV library due to improper size checks with respect to buffer length' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8052, APQ8056, APQ8076, APQ8096, APQ8096SG, APQ8098, MDM9655, MSM8952, MSM8956, MSM8976, MSM8976SG, MSM8996, MSM8996SG, MSM8998, QCM4290, QCM6125, QCS410, QCS4290, QCS610, QCS6125, QSM8250, SA6145P, SA6150P, SA6155, SA6155P, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SDA640, SDA660, SDA845, SDA855, SDM640, SDM660, SDM830, SDM845, SDM850, SDX50M, SDX55, SDX55M, SM4250, SM4250P, SM6115, SM6115P, SM6125, SM6150, SM6150P, SM6250, SM6250P, SM6350, SM7125, SM7150, SM7150P, SM7225, SM7250, SM7250P, SM8150, SM8150P, SM8250, SXR2130, SXR2130P

Un desbordamiento del búfer en la biblioteca LibFastCV debido a comprobaciones de tamaño inapropiadas con respecto a la longitud del búfer en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile en versiones APQ8052, APQ8056, APQ8076, APQ8096, APQ8096SG, APQ8098, MDM9655, MSM8952, MSM8956, MSM8976, MSM8976SG, MSM8996, MSM8996SG, MSM8998, QCM4290, QCM6125, QCS410, QCS4290, QCS610, QCS6125, QSM8250, SA6145P, SA6150P, SA6155, SA6155P, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SDA640, SDA660, SDA845, SDA855, SDM640, SDM660, SDM830, SDM845, SDM850, SDX50M, SDX55, SDX55M, SM4250, SM4250P, SM6115, SM6115P, SM6125, SM6150, SM6150P, SM6250, SM6250P, SM6350, SM7125, SM7150, SM7150P, SM7225, SM7250, SM7250P, SM8150, SM8150P, SM8250, SXR2130, SXR2130P

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2020-03-31 CVE Reserved
2020-11-12 CVE Published
2024-08-04 CVE Updated
2024-08-04 First Exploit
2025-03-30 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CAPEC

References (3)

URL	Tag	Source
https://blog.checkpoint.com/2020/08/06/achilles-sm...	Third Party Advisory

1 - 1 of 1

URL	Date	SRC
https://research.checkpoint.com/2021/pwn2own-qualcomm-dsp	2024-08-04

1 - 1 of 1

URL	Date	SRC

URL	Date	SRC
https://www.qualcomm.com/company/product-security/bulletins/novemb...	2022-10-19

1 - 1 of 1

Affected Vendors, Products, and Versions (62)

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Qualcomm Search vendor "Qualcomm"	Apq8052 Firmware Search vendor "Qualcomm" for product "Apq8052 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Apq8052 Search vendor "Qualcomm" for product "Apq8052"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Apq8056 Firmware Search vendor "Qualcomm" for product "Apq8056 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Apq8056 Search vendor "Qualcomm" for product "Apq8056"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Apq8076 Firmware Search vendor "Qualcomm" for product "Apq8076 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Apq8076 Search vendor "Qualcomm" for product "Apq8076"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Apq8096 Firmware Search vendor "Qualcomm" for product "Apq8096 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Apq8096 Search vendor "Qualcomm" for product "Apq8096"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Apq8098 Firmware Search vendor "Qualcomm" for product "Apq8098 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Apq8098 Search vendor "Qualcomm" for product "Apq8098"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Mdm9655 Firmware Search vendor "Qualcomm" for product "Mdm9655 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Mdm9655 Search vendor "Qualcomm" for product "Mdm9655"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Msm8952 Firmware Search vendor "Qualcomm" for product "Msm8952 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Msm8952 Search vendor "Qualcomm" for product "Msm8952"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Msm8956 Firmware Search vendor "Qualcomm" for product "Msm8956 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Msm8956 Search vendor "Qualcomm" for product "Msm8956"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Msm8976 Firmware Search vendor "Qualcomm" for product "Msm8976 Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Msm8976 Search vendor "Qualcomm" for product "Msm8976"	-	-	Safe
Qualcomm Search vendor "Qualcomm"	Msm8976sg Firmware Search vendor "Qualcomm" for product "Msm8976sg Firmware"	-	-	Affected	in	Qualcomm Search vendor "Qualcomm"	Msm8976sg Search vendor "Qualcomm" for product "Msm8976sg"	-	-	Safe

1 - 10 of 62