Lucene search

QualcommCVELIST:CVE-2020-3692

HistoryNov 02, 2020 - 6:21 a.m.

CVE-2020-3692

2020-11-0206:21:30

qualcomm

www.cve.org

buffer overflow

imei

gateway address

input validation

snapdragon

agatti

nicobar

qcm6125

qcs610

rennell

sa415m

saipan

sc7180

sc8180x

sdx24

sdx55

sm6150

sm7150

sm8150

sm8250

sxr2130

AI Score

9.8

Confidence

High

EPSS

0.003

Percentile

71.2%

JSON

u’Possible buffer overflow while updating output buffer for IMEI and Gateway Address due to lack of check of input validation for parameters received from server’ in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in Agatti, Kamorta, Nicobar, QCM6125, QCS610, Rennell, SA415M, Saipan, SC7180, SC8180X, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130

CNA Affected

[
  {
    "product": "Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "Agatti, Kamorta, Nicobar, QCM6125, QCS610, Rennell, SA415M, Saipan, SC7180, SC8180X, SDX24, SDX55, SM6150, SM7150, SM8150, SM8250, SXR2130"
      }
    ]
  }
]

References

www.qualcomm.com/company/product-security/bulletins/october-2020-bulletin