CVE-2020-3653

2020-04-1610:46:21

qualcomm

www.cve.org

AI Score

9.3

Confidence

High

EPSS

0.002

Percentile

56.4%

JSON

Possible buffer over-read in windows wlan driver function due to lack of check of length of variable received from userspace in Snapdragon Compute, Snapdragon Connectivity in MSM8998, QCA6390, SC7180, SC8180X, SDM850

CNA Affected

[
  {
    "product": "Snapdragon Compute, Snapdragon Connectivity",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "MSM8998, QCA6390, SC7180, SC8180X, SDM850"
      }
    ]
  }
]

References

www.qualcomm.com/company/product-security/bulletins/april-2020-bulletin