Lucene search

[email protected]NVD:CVE-2020-3671

HistoryJul 30, 2020 - 12:15 p.m.

CVE-2020-3671

2020-07-3012:15:11

CWE-416

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.4

Confidence

High

EPSS

0.003

Percentile

69.4%

JSON

Use-after-free issue could occur due to dangling pointer when generating a frame buffer in OpenGL ES in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in APQ8009, Nicobar, QCM2150, QCS405, Saipan, SDM845, SM8150, SM8250, SXR2130

Affected configurations

Nvd

Node

qualcommapq8009_firmwareMatch-

AND

qualcommapq8009Match-

Node

qualcommnicobar_firmwareMatch-

AND

qualcommnicobarMatch-

Node

qualcommqcm2150_firmwareMatch-

AND

qualcommqcm2150Match-

Node

qualcommqcs405_firmwareMatch-

AND

qualcommqcs405Match-

Node

qualcommsaipan_firmwareMatch-

AND

qualcommsaipanMatch-

Node

qualcommsdm845_firmwareMatch-

AND

qualcommsdm845Match-

Node

qualcommsm8150_firmwareMatch-

AND

qualcommsm8150Match-

Node

qualcommsm8250_firmwareMatch-

AND

qualcommsm8250Match-

Node

qualcommsxr2130_firmwareMatch-

AND

qualcommsxr2130Match-

VendorProductVersionCPE
qualcommapq8009_firmware-cpe:2.3:o:qualcomm:apq8009_firmware:-:*:*:*:*:*:*:*
qualcommapq8009-cpe:2.3:h:qualcomm:apq8009:-:*:*:*:*:*:*:*
qualcommnicobar_firmware-cpe:2.3:o:qualcomm:nicobar_firmware:-:*:*:*:*:*:*:*
qualcommnicobar-cpe:2.3:h:qualcomm:nicobar:-:*:*:*:*:*:*:*
qualcommqcm2150_firmware-cpe:2.3:o:qualcomm:qcm2150_firmware:-:*:*:*:*:*:*:*
qualcommqcm2150-cpe:2.3:h:qualcomm:qcm2150:-:*:*:*:*:*:*:*
qualcommqcs405_firmware-cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*
qualcommqcs405-cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*
qualcommsaipan_firmware-cpe:2.3:o:qualcomm:saipan_firmware:-:*:*:*:*:*:*:*
qualcommsaipan-cpe:2.3:h:qualcomm:saipan:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
qualcomm	apq8009_firmware	-	cpe:2.3:o:qualcomm:apq8009_firmware:-:::::::*
qualcomm	apq8009	-	cpe:2.3:h:qualcomm:apq8009:-:::::::*
qualcomm	nicobar_firmware	-	cpe:2.3:o:qualcomm:nicobar_firmware:-:::::::*
qualcomm	nicobar	-	cpe:2.3:h:qualcomm:nicobar:-:::::::*
qualcomm	qcm2150_firmware	-	cpe:2.3:o:qualcomm:qcm2150_firmware:-:::::::*
qualcomm	qcm2150	-	cpe:2.3:h:qualcomm:qcm2150:-:::::::*
qualcomm	qcs405_firmware	-	cpe:2.3:o:qualcomm:qcs405_firmware:-:::::::*
qualcomm	qcs405	-	cpe:2.3:h:qualcomm:qcs405:-:::::::*
qualcomm	saipan_firmware	-	cpe:2.3:o:qualcomm:saipan_firmware:-:::::::*
qualcomm	saipan	-	cpe:2.3:h:qualcomm:saipan:-:::::::*

Rows per page:

1-10 of 181

References

www.qualcomm.com/company/product-security/bulletins/july-2020-bulletin

www.qualcomm.com/company/product-security/bulletins/july-2020-security-bulletin

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.4

Confidence

High

EPSS

0.003

Percentile

69.4%

JSON

Related for NVD:CVE-2020-3671

prion1 cve1 cvelist1