Lucene search

[email protected]CVE-2020-11207

HistoryNov 12, 2020 - 10:15 a.m.

CVE-2020-11207

2020-11-1210:15:13

CWE-120

[email protected]

web.nvd.nist.gov

cve-2020-11207

buffer overflow

libfastcv

snapdragon

security

vulnerability

nvd

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.5%

JSON

Buffer overflow in LibFastCV library due to improper size checks with respect to buffer length’ in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8052, APQ8056, APQ8076, APQ8096, APQ8096SG, APQ8098, MDM9655, MSM8952, MSM8956, MSM8976, MSM8976SG, MSM8996, MSM8996SG, MSM8998, QCM4290, QCM6125, QCS410, QCS4290, QCS610, QCS6125, QSM8250, SA6145P, SA6150P, SA6155, SA6155P, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SDA640, SDA660, SDA845, SDA855, SDM640, SDM660, SDM830, SDM845, SDM850, SDX50M, SDX55, SDX55M, SM4250, SM4250P, SM6115, SM6115P, SM6125, SM6150, SM6150P, SM6250, SM6250P, SM6350, SM7125, SM7150, SM7150P, SM7225, SM7250, SM7250P, SM8150, SM8150P, SM8250, SXR2130, SXR2130P

Affected configurations

NVD

Node

qualcommapq8052Match-

AND

qualcommapq8052_firmwareMatch-

Node

qualcommapq8056Match-

AND

qualcommapq8056_firmwareMatch-

Node

qualcommapq8076Match-

AND

qualcommapq8076_firmwareMatch-

Node

qualcommapq8096Match-

AND

qualcommapq8096_firmwareMatch-

Node

qualcommapq8098Match-

AND

qualcommapq8098_firmwareMatch-

Node

qualcommmdm9655Match-

AND

qualcommmdm9655_firmwareMatch-

Node

qualcommmsm8952Match-

AND

qualcommmsm8952_firmwareMatch-

Node

qualcommmsm8956Match-

AND

qualcommmsm8956_firmwareMatch-

Node

qualcommmsm8976_firmwareMatch-

AND

qualcommmsm8976Match-

Node

qualcommmsm8976sg_firmwareMatch-

AND

qualcommmsm8976sgMatch-

Node

qualcommmsm8996_firmwareMatch-

AND

qualcommmsm8996Match-

Node

qualcommmsm8996sg_firmwareMatch-

AND

qualcommmsm8996sgMatch-

Node

qualcommmsm8998_firmwareMatch-

AND

qualcommmsm8998Match-

Node

qualcommqcm4290_firmwareMatch-

AND

qualcommqcm4290Match-

Node

qualcommqcm6125_firmwareMatch-

AND

qualcommqcm6125Match-

Node

qualcommqcs410_firmwareMatch-

AND

qualcommqcs410Match-

Node

qualcommqcs4290_firmwareMatch-

AND

qualcommqcs4290Match-

Node

qualcommqcs610_firmwareMatch-

AND

qualcommqcs610Match-

Node

qualcommqcs6125_firmwareMatch-

AND

qualcommqcs6125Match-

Node

qualcommqsm8250_firmwareMatch-

AND

qualcommqsm8250Match-

Node

qualcommsa6145p_firmwareMatch-

AND

qualcommsa6145pMatch-

Node

qualcommsa6150p_firmwareMatch-

AND

qualcommsa6150pMatch-

Node

qualcommsa6155_firmwareMatch-

AND

qualcommsa6155Match-

Node

qualcommsa6155p_firmwareMatch-

AND

qualcommsa6155pMatch-

Node

qualcommsa8150p_firmwareMatch-

AND

qualcommsa8150pMatch-

Node

qualcommsa8155_firmwareMatch-

AND

qualcommsa8155Match-

Node

qualcommsa8155p_firmwareMatch-

AND

qualcommsa8155pMatch-

Node

qualcommsa8195p_firmwareMatch-

AND

qualcommsa8195pMatch-

Node

qualcommsc7180_firmwareMatch-

AND

qualcommsc7180Match-

Node

qualcommsda640_firmwareMatch-

AND

qualcommsda640Match-

Node

qualcommsda660_firmwareMatch-

AND

qualcommsda660Match-

Node

qualcommsda845_firmwareMatch-

AND

qualcommsda845Match-

Node

qualcommsda855_firmwareMatch-

AND

qualcommsda855Match-

Node

qualcommsdm640_firmwareMatch-

AND

qualcommsdm640Match-

Node

qualcommsdm660_firmwareMatch-

AND

qualcommsdm660Match-

Node

qualcommsdm830_firmwareMatch-

AND

qualcommsdm830Match-

Node

qualcommsdm845_firmwareMatch-

AND

qualcommsdm845Match-

Node

qualcommsdm850_firmwareMatch-

AND

qualcommsdm850Match-

Node

qualcommsdx50m_firmwareMatch-

AND

qualcommsdx50mMatch-

Node

qualcommsdx55_firmwareMatch-

AND

qualcommsdx55Match-

Node

qualcommsdx55m_firmwareMatch-

AND

qualcommsdx55mMatch-

Node

qualcommsm4250_firmwareMatch-

AND

qualcommsm4250Match-

Node

qualcommsm4250p_firmwareMatch-

AND

qualcommsm4250pMatch-

Node

qualcommsm6115_firmwareMatch-

AND

qualcommsm6115Match-

Node

qualcommsm6115p_firmwareMatch-

AND

qualcommsm6115pMatch-

Node

qualcommsm6125_firmwareMatch-

AND

qualcommsm6125Match-

Node

qualcommsm6150_firmwareMatch-

AND

qualcommsm6150Match-

Node

qualcommsm6150p_firmwareMatch-

AND

qualcommsm6150pMatch-

Node

qualcommsm6250_firmwareMatch-

AND

qualcommsm6250Match-

Node

qualcommsm6250p_firmwareMatch-

AND

qualcommsm6250pMatch-

Node

qualcommsm6350_firmwareMatch-

AND

qualcommsm6350Match-

Node

qualcommsm7125_firmwareMatch-

AND

qualcommsm7125Match-

Node

qualcommsm7150_firmwareMatch-

AND

qualcommsm7150Match-

Node

qualcommsm7150p_firmwareMatch-

AND

qualcommsm7150pMatch-

Node

qualcommsm7225_firmwareMatch-

AND

qualcommsm7225Match-

Node

qualcommsm7250_firmwareMatch-

AND

qualcommsm7250Match-

Node

qualcommsm7250p_firmwareMatch-

AND

qualcommsm7250pMatch-

Node

qualcommsm8150_firmwareMatch-

AND

qualcommsm8150Match-

Node

qualcommsm8150p_firmwareMatch-

AND

qualcommsm8150pMatch-

Node

qualcommsm8250_firmwareMatch-

AND

qualcommsm8250Match-

Node

qualcommsxr2130_firmwareMatch-

AND

qualcommsxr2130Match-

Node

qualcommsxr2130p_firmwareMatch-

AND

qualcommsxr2130pMatch-

CPENameOperatorVersion
qualcomm:apq8052_firmwarequalcomm apq8052 firmwareeq-

CPE	Name	Operator	Version
qualcomm:apq8052_firmware	qualcomm apq8052 firmware	eq	-

CNA Affected

[
  {
    "product": "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "APQ8052, APQ8056, APQ8076, APQ8096, APQ8096SG, APQ8098, MDM9655, MSM8952, MSM8956, MSM8976, MSM8976SG, MSM8996, MSM8996SG, MSM8998, QCM4290, QCM6125, QCS410, QCS4290, QCS610, QCS6125, QSM8250, SA6145P, SA6150P, SA6155, SA6155P, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SDA640, SDA660, SDA845, SDA855, SDM640, SDM660, SDM830, SDM845, SDM850, SDX50M, SDX55, SDX55M, SM4250, SM4250P, SM6115, SM6115P, SM6125, SM6150, SM6150P, SM6250, SM6250P, SM6350, SM7125, SM7150, SM7150P, SM7225, SM7250, SM7250P, SM8150, SM8150P, SM8250, SXR2130, SXR2130P"
      }
    ]
  }
]

References

blog.checkpoint.com/2020/08/06/achilles-small-chip-big-peril/

research.checkpoint.com/2021/pwn2own-qualcomm-dsp/

www.qualcomm.com/company/product-security/bulletins/november-2020-bulletin

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.5%

JSON

Related for CVE-2020-11207

prion1 nvd1 cvelist1 threatpost1