CVE-2020-11226

CVE

High

Out of bound memory read in Data modem while unpacking data due to lack of offset length check in Snapdragon Auto, Snapdragon Compute, Snap…

CVSS

7.5

High

EPSS

0.01

p53

Published

2020-01-01

Updated

2020-01-01

Description

Out of bound memory read in Data modem while unpacking data due to lack of offset length check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Tags · CWE

RCEPre-auth

CWE-125

CAPEC-540

Affected products

Apq8009_firmwareApq8009w_firmwareApq8017_firmwareApq8037_firmwareApq8053_firmwareApq8084_firmwareApq8096au_firmwareAqt1000_firmwareAr8035_firmwareAr8151_firmwareCsr6030_firmwareCsrb31024_firmwareMdm8207_firmwareMdm9150_firmwareMdm9205_firmwareMdm9206_firmwareMdm9207_firmwareMdm9230_firmwareMdm9250_firmwareMdm9330_firmware

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Timeline

2020-01-01

Published

2020-01-01

Updated

CVSS 3.1 breakdown

Attack Vector

AV: N

Network (N)

Attack Complexity

AC: L

Low (L)

Privileges Required

PR: N

None (N)

User Interaction

UI: N

None (N)

Scope

S: U

Unchanged (U)

Confidentiality Impact

C: H

High (H)

Integrity Impact

I: N

None (N)

Availability Impact

A: N

None (N)

Exploit indicators

EPSS

0.009 · p53

Known exploited (KEV)

Known exploits — Сканер-ВС

No Сканер-ВС checks registered for this vulnerability yet.

Affected products

Qualcomm

Wcd9380 Wcd9380 Firmware Wcd9385 Qca6574au Wcd9385 Firmware Qca6574au Firmware Wcd9370 Wsa8810 Wsa8815 Wcd9370 Firmware+390

Product	Vendor	Status
apq8009_firmware	*	Tracked
apq8009w_firmware	*	Tracked
apq8017_firmware	*	Tracked
apq8037_firmware	*	Tracked
apq8053_firmware	*	Tracked
apq8084_firmware	*	Tracked
apq8096au_firmware	*	Tracked
aqt1000_firmware	*	Tracked
ar8035_firmware	*	Tracked
ar8151_firmware	*	Tracked
csr6030_firmware	*	Tracked
csrb31024_firmware	*	Tracked
mdm8207_firmware	*	Tracked
mdm9150_firmware	*	Tracked
mdm9205_firmware	*	Tracked
mdm9206_firmware	*	Tracked
mdm9207_firmware	*	Tracked
mdm9230_firmware	*	Tracked
mdm9250_firmware	*	Tracked
mdm9330_firmware	*	Tracked

Showing first 20 of 402

Source databases

CVE