CVE-2020-3629
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
u'Stack out of bound issue occurs when making query to DSP capabilities due to wrong assumption was made on determining the buffer size for the DSP attributes' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in Bitra, Kamorta, Rennell, SC7180, SDM845, SM6150, SM7150, SM8150, SM8250, SXR2130
Un problema fuera del límite de la pila ocurre cuando se realizan consultas a las capacidades de DSP debido a que una suposición errónea fue hecha al determinar el tamaño del búfer para los atributos de DSP en los productos Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables en versiones Bitra, Kamorta, Rennell, SC7180, SDM845, SM6150, SM7150, SM8150, SM8250, SXR2130.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2019-12-17 CVE Reserved
- 2020-09-08 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| https://www.qualcomm.com/company/product-security/bulletins/august-2020-bulletin | Broken Link |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.qualcomm.com/company/product-security/bulletins/august-2020-security-bulletin | 2020-09-14 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Qualcomm Search vendor "Qualcomm" | Bitra Firmware Search vendor "Qualcomm" for product "Bitra Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Bitra Search vendor "Qualcomm" for product "Bitra" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Kamorta Firmware Search vendor "Qualcomm" for product "Kamorta Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Kamorta Search vendor "Qualcomm" for product "Kamorta" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Rennell Firmware Search vendor "Qualcomm" for product "Rennell Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Rennell Search vendor "Qualcomm" for product "Rennell" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sc7180 Firmware Search vendor "Qualcomm" for product "Sc7180 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sc7180 Search vendor "Qualcomm" for product "Sc7180" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sdm845 Firmware Search vendor "Qualcomm" for product "Sdm845 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sdm845 Search vendor "Qualcomm" for product "Sdm845" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm6150 Firmware Search vendor "Qualcomm" for product "Sm6150 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm6150 Search vendor "Qualcomm" for product "Sm6150" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm7150 Firmware Search vendor "Qualcomm" for product "Sm7150 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm7150 Search vendor "Qualcomm" for product "Sm7150" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm8150 Firmware Search vendor "Qualcomm" for product "Sm8150 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm8150 Search vendor "Qualcomm" for product "Sm8150" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sm8250 Firmware Search vendor "Qualcomm" for product "Sm8250 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sm8250 Search vendor "Qualcomm" for product "Sm8250" | - | - |
Safe
|
| Qualcomm Search vendor "Qualcomm" | Sxr2130 Firmware Search vendor "Qualcomm" for product "Sxr2130 Firmware" | - | - |
Affected
| in | Qualcomm Search vendor "Qualcomm" | Sxr2130 Search vendor "Qualcomm" for product "Sxr2130" | - | - |
Safe
|