Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveQualcommCVE-2020-11187
HistoryFeb 22, 2021 - 7:15 a.m.

CVE-2020-11187

2021-02-2207:15:13
CWE-129
qualcomm
web.nvd.nist.gov
53
3
cve
2020
11187
memory corruption
bsi module
parameter count validation
snapdragon auto
snapdragon connectivity
snapdragon mobile
nvd

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.8

Confidence

High

EPSS

0

Percentile

12.6%

JSON

Possible memory corruption in BSI module due to improper validation of parameter count in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile

Affected configurations

Nvd
Node
qualcommaqt1000_firmwareMatch-
AND
qualcommaqt1000Match-
Node
qualcommcsrb31024_firmwareMatch-
AND
qualcommcsrb31024Match-
Node
qualcommpm7150a_firmwareMatch-
AND
qualcommpm7150aMatch-
Node
qualcommpm7150l_firmwareMatch-
AND
qualcommpm7150lMatch-
Node
qualcommpm7250_firmwareMatch-
AND
qualcommpm7250Match-
Node
qualcommpm7250b_firmwareMatch-
AND
qualcommpm7250bMatch-
Node
qualcommpm8004_firmwareMatch-
AND
qualcommpm8004Match-
Node
qualcommpm8008_firmwareMatch-
AND
qualcommpm8008Match-
Node
qualcommpm855_firmwareMatch-
AND
qualcommpm855Match-
Node
qualcommpm855b_firmwareMatch-
AND
qualcommpm855bMatch-
Node
qualcommpm855l_firmwareMatch-
AND
qualcommpm855lMatch-
Node
qualcommpm855p_firmwareMatch-
AND
qualcommpm855pMatch-
Node
qualcommpmk8002_firmwareMatch-
AND
qualcommpmk8002Match-
Node
qualcommpmx24_firmwareMatch-
AND
qualcommpmx24Match-
Node
qualcommpmx50_firmwareMatch-
AND
qualcommpmx50Match-
Node
qualcommpmx55_firmwareMatch-
AND
qualcommpmx55Match-
Node
qualcommqat3516_firmwareMatch-
AND
qualcommqat3516Match-
Node
qualcommqat3518_firmwareMatch-
AND
qualcommqat3518Match-
Node
qualcommqat3519_firmwareMatch-
AND
qualcommqat3519Match-
Node
qualcommqat3555_firmwareMatch-
AND
qualcommqat3555Match-
Node
qualcommqat5515_firmwareMatch-
AND
qualcommqat5515Match-
Node
qualcommqat5522_firmwareMatch-
AND
qualcommqat5522Match-
Node
qualcommqat5533_firmwareMatch-
AND
qualcommqat5533Match-
Node
qualcommqbt2000_firmwareMatch-
AND
qualcommqbt2000Match-
Node
qualcommqca6391_firmwareMatch-
AND
qualcommqca6391Match-
Node
qualcommqca6564au_firmwareMatch-
AND
qualcommqca6564auMatch-
Node
qualcommqca6574a_firmwareMatch-
AND
qualcommqca6574aMatch-
Node
qualcommqca6574au_firmwareMatch-
AND
qualcommqca6574auMatch-
Node
qualcommqca6584au_firmwareMatch-
AND
qualcommqca6584auMatch-
Node
qualcommqca6595au_firmwareMatch-
AND
qualcommqca6595auMatch-
Node
qualcommqca6696_firmwareMatch-
AND
qualcommqca6696Match-
Node
qualcommqca8337_firmwareMatch-
AND
qualcommqca8337Match-
Node
qualcommqdm2301_firmwareMatch-
AND
qualcommqdm2301Match-
Node
qualcommqdm2305_firmwareMatch-
AND
qualcommqdm2305Match-
Node
qualcommqdm3301_firmwareMatch-
AND
qualcommqdm3301Match-
Node
qualcommqdm5620Match-
AND
qualcommqdm5620_firmwareMatch-
Node
qualcommqdm5621Match-
AND
qualcommqdm5621_firmwareMatch-
Node
qualcommqdm5650Match-
AND
qualcommqdm5650_firmwareMatch-
Node
qualcommqdm5652Match-
AND
qualcommqdm5652_firmwareMatch-
Node
qualcommqdm5670Match-
AND
qualcommqdm5670_firmwareMatch-
Node
qualcommqdm5671Match-
AND
qualcommqdm5671_firmwareMatch-
Node
qualcommqdm5677Match-
AND
qualcommqdm5677_firmwareMatch-
Node
qualcommqdm5679Match-
AND
qualcommqdm5679_firmwareMatch-
Node
qualcommqet4101_firmwareMatch-
AND
qualcommqet4101Match-
Node
qualcommqet5100_firmwareMatch-
AND
qualcommqet5100Match-
Node
qualcommqet6110_firmwareMatch-
AND
qualcommqet6110Match-
Node
qualcommqln1021aq_firmwareMatch-
AND
qualcommqln1021aqMatch-
Node
qualcommqln1031_firmwareMatch-
AND
qualcommqln1031Match-
Node
qualcommqln1036aq_firmwareMatch-
AND
qualcommqln1036aqMatch-
Node
qualcommqln4642_firmwareMatch-
AND
qualcommqln4642Match-
Node
qualcommqln4650_firmwareMatch-
AND
qualcommqln4650Match-
Node
qualcommqln5020_firmwareMatch-
AND
qualcommqln5020Match-
Node
qualcommqln5030_firmwareMatch-
AND
qualcommqln5030Match-
Node
qualcommqln5040_firmwareMatch-
AND
qualcommqln5040Match-
Node
qualcommqpa2625_firmwareMatch-
AND
qualcommqpa2625Match-
Node
qualcommqpa5580_firmwareMatch-
AND
qualcommqpa5580Match-
Node
qualcommqpa6560_firmwareMatch-
AND
qualcommqpa6560Match-
Node
qualcommqpa8673_firmwareMatch-
AND
qualcommqpa8673Match-
Node
qualcommqpa8686_firmwareMatch-
AND
qualcommqpa8686Match-
Node
qualcommqpa8801_firmwareMatch-
AND
qualcommqpa8801Match-
Node
qualcommqpa8802_firmwareMatch-
AND
qualcommqpa8802Match-
Node
qualcommqpa8803_firmwareMatch-
AND
qualcommqpa8803Match-
Node
qualcommqpa8821_firmwareMatch-
AND
qualcommqpa8821Match-
Node
qualcommqpa8842_firmwareMatch-
AND
qualcommqpa8842Match-
Node
qualcommqpm5621_firmwareMatch-
AND
qualcommqpm5621Match-
Node
qualcommqpm5658_firmwareMatch-
AND
qualcommqpm5658Match-
Node
qualcommqpm5670_firmwareMatch-
AND
qualcommqpm5670Match-
Node
qualcommqpm5677_firmwareMatch-
AND
qualcommqpm5677Match-
Node
qualcommqpm5679_firmwareMatch-
AND
qualcommqpm5679Match-
Node
qualcommqpm6582_firmwareMatch-
AND
qualcommqpm6582Match-
Node
qualcommqpm6585_firmwareMatch-
AND
qualcommqpm6585Match-
Node
qualcommqpm8830_firmwareMatch-
AND
qualcommqpm8830Match-
Node
qualcommqpm8895_firmwareMatch-
AND
qualcommqpm8895Match-
Node
qualcommqtc801s_firmwareMatch-
AND
qualcommqtc801sMatch-
Node
qualcommqtm525_firmwareMatch-
AND
qualcommqtm525Match-
Node
qualcommqtm527_firmwareMatch-
AND
qualcommqtm527Match-
Node
qualcommsa415m_firmwareMatch-
AND
qualcommsa415mMatch-
Node
qualcommsd765_firmwareMatch-
AND
qualcommsd765Match-
Node
qualcommsd765g_firmwareMatch-
AND
qualcommsd765gMatch-
Node
qualcommsd768g_firmwareMatch-
AND
qualcommsd768gMatch-
Node
qualcommsdr051_firmwareMatch-
AND
qualcommsdr051Match-
Node
qualcommsdr052_firmwareMatch-
AND
qualcommsdr052Match-
Node
qualcommsdr8150_firmwareMatch-
AND
qualcommsdr8150Match-
Node
qualcommsdr865_firmwareMatch-
AND
qualcommsdr865Match-
Node
qualcommsdx50m_firmwareMatch-
AND
qualcommsdx50mMatch-
Node
qualcommsdx55_firmwareMatch-
AND
qualcommsdx55Match-
Node
qualcommsm7250p_firmwareMatch-
AND
qualcommsm7250pMatch-
Node
qualcommsmb1355_firmwareMatch-
AND
qualcommsmb1355Match-
Node
qualcommsmb1390_firmwareMatch-
AND
qualcommsmb1390Match-
Node
qualcommsmr525_firmwareMatch-
AND
qualcommsmr525Match-
Node
qualcommsmr526_firmwareMatch-
AND
qualcommsmr526Match-
Node
qualcommwcd9341_firmwareMatch-
AND
qualcommwcd9341Match-
Node
qualcommwcd9380_firmwareMatch-
AND
qualcommwcd9380Match-
Node
qualcommwcd9385_firmwareMatch-
AND
qualcommwcd9385Match-
Node
qualcommwcn3991_firmwareMatch-
AND
qualcommwcn3991Match-
Node
qualcommwcn3998_firmwareMatch-
AND
qualcommwcn3998Match-
Node
qualcommwsa8810_firmwareMatch-
AND
qualcommwsa8810Match-
Node
qualcommwsa8815_firmwareMatch-
AND
qualcommwsa8815Match-
VendorProductVersionCPE
qualcommaqt1000_firmware-cpe:2.3:o:qualcomm:aqt1000_firmware:-:*:*:*:*:*:*:*
qualcommaqt1000-cpe:2.3:h:qualcomm:aqt1000:-:*:*:*:*:*:*:*
qualcommcsrb31024_firmware-cpe:2.3:o:qualcomm:csrb31024_firmware:-:*:*:*:*:*:*:*
qualcommcsrb31024-cpe:2.3:h:qualcomm:csrb31024:-:*:*:*:*:*:*:*
qualcommpm7150a_firmware-cpe:2.3:o:qualcomm:pm7150a_firmware:-:*:*:*:*:*:*:*
qualcommpm7150a-cpe:2.3:h:qualcomm:pm7150a:-:*:*:*:*:*:*:*
qualcommpm7150l_firmware-cpe:2.3:o:qualcomm:pm7150l_firmware:-:*:*:*:*:*:*:*
qualcommpm7150l-cpe:2.3:h:qualcomm:pm7150l:-:*:*:*:*:*:*:*
qualcommpm7250_firmware-cpe:2.3:o:qualcomm:pm7250_firmware:-:*:*:*:*:*:*:*
qualcommpm7250-cpe:2.3:h:qualcomm:pm7250:-:*:*:*:*:*:*:*
Rows per page:
1-10 of 1961

CNA Affected

[
  {
    "product": "Snapdragon Auto, Snapdragon Connectivity, Snapdragon Mobile",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "AQT1000, CSRB31024, PM7150A, PM7150L, PM7250, PM7250B, PM8004, PM8008, PM855, PM855B, PM855L, PM855P, PMK8002, PMX24, PMX50, PMX55, QAT3516, QAT3518, QAT3519, QAT3555, QAT5515, QAT5522, QAT5533, QBT2000, QCA6391, QCA6564AU, QCA6574A, QCA6574AU, QCA6584AU, QCA6595AU, QCA6696, QCA8337, QDM2301, QDM2305, QDM3301, QDM5620, QDM5621, QDM5650, QDM5652, QDM5670, QDM5671, QDM5677, QDM5679, QET4101, QET5100, QET6110, QLN1021AQ, QLN1031, QLN1036AQ, QLN4642, QLN4650, QLN5020, QLN5030, QLN5040, QPA2625, QPA5580, QPA6560, QPA8673, QPA8686, QPA8801, QPA8802, QPA8803, QPA8821, QPA8842, QPM5621, QPM5658, QPM5670, QPM5677, QPM5679, QPM6582, QPM6585, QPM8830, QPM8895, QTC801S, QTM525, QTM527, SA415M, SD765, SD765G, SD768G, SDR051, SDR052, SDR8150, SDR865, SDX50M, SDX55, SM7250P, SMB1355, SMB1390, SMR525, SMR526, WCD9341, WCD9380, WCD9385, WCN3991, WCN3998, WSA8810, WSA8815"
      }
    ]
  }
]

Social References

More

Related

prion 1
cvelist 1
nvd 1
prion
prion
Memory corruption
2021-02-22 07:15:00
cvelist
cvelist
CVE-2020-11187
2021-02-22 06:25:52
nvd
nvd
CVE-2020-11187
2021-02-22 07:15:13

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.8

Confidence

High

EPSS

0

Percentile

12.6%

JSON
Related for CVE-2020-11187
prion1cvelist1nvd1