CVE-2020-11242 - OpenCVE

User could gain access to secure memory due to incorrect argument into address range validation api used in SDI to capture requested contents in Snapdragon Industrial IOT, Snapdragon Mobile

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Qualcomm	Pm660 Pm660 Firmware Pm660a Pm660a Firmware Pm660l Pm660l Firmware Pm855a Pm855a Firmware Pmm855au Pmm855au Firmware Qat3514 Qat3514 Firmware Qat3522 Qat3522 Firmware Qat3550 Qat3550 Firmware Qca6564a Qca6564a Firmware Qca6564au Qca6564au Firmware Qca6574a Qca6574a Firmware Qca6574au Qca6574au Firmware Qca6595 Qca6595 Firmware Qca6595au Qca6595au Firmware Qet4100 Qet4100 Firmware Qet4101 Qet4101 Firmware Qet4200aq Qet4200aq Firmware Qln1021aq Qln1021aq Firmware Qln1031 Qln1031 Firmware Qln1036aq Qln1036aq Firmware Qpa4340 Qpa4340 Firmware Qpa4360 Qpa4360 Firmware Qpa5460 Qpa5460 Firmware Qtc800h Qtc800h Firmware Qtc800s Qtc800s Firmware Rsw8577 Rsw8577 Firmware Sd455 Sd455 Firmware Sd636 Sd636 Firmware Sd660 Sd660 Firmware Sdm630 Sdm630 Firmware Sdr660 Sdr660 Firmware Smb1351 Smb1351 Firmware Wcd9335 Wcd9335 Firmware Wcd9340 Wcd9340 Firmware Wcd9341 Wcd9341 Firmware Wcn3950 Wcn3950 Firmware Wcn3980 Wcn3980 Firmware Wcn3990 Wcn3990 Firmware

Configuration 1 [-]

AND

cpe:2.3:o:qualcomm:pm660_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:pm660:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:qualcomm:pm660a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:pm660a:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:qualcomm:pm660l_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:pm660l:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:qualcomm:pm855a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:pm855a:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:qualcomm:pmm855au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:pmm855au:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:qualcomm:qat3514_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qat3514:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:qualcomm:qat3522_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qat3522:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:qualcomm:qat3550_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qat3550:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:qualcomm:qca6564a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6564a:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:qualcomm:qca6564au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6564au:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:qualcomm:qca6574a_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6574a:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:qualcomm:qca6574au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6574au:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:qualcomm:qca6595_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6595:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:qualcomm:qca6595au_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6595au:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:qualcomm:qet4100_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qet4100:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:qualcomm:qet4101_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qet4101:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:qualcomm:qet4200aq_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qet4200aq:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:qualcomm:qln1021aq_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qln1021aq:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:qualcomm:qln1031_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qln1031:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:qualcomm:qln1036aq_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qln1036aq:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:qualcomm:qpa4340_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qpa4340:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:qualcomm:qpa4360_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qpa4360:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:qualcomm:qpa5460_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qpa5460:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:qualcomm:qtc800h_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qtc800h:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:qualcomm:qtc800s_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qtc800s:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:qualcomm:rsw8577_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:rsw8577:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:qualcomm:sd455_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd455:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:o:qualcomm:sd636_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd636:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

cpe:2.3:o:qualcomm:sd660_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd660:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:o:qualcomm:sdm630_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdm630:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:o:qualcomm:sdr660_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdr660:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND

cpe:2.3:o:qualcomm:smb1351_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:smb1351:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND

cpe:2.3:o:qualcomm:wcd9335_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9335:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND

cpe:2.3:o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9340:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND

cpe:2.3:o:qualcomm:wcd9341_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9341:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND

cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3950:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND

cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND

cpe:2.3:o:qualcomm:wcn3990_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3990:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://www.qualcomm.com/company/product-security/bulletins/april-2021-bulletin

History

No history.

MITRE

Status: PUBLISHED

Assigner: qualcomm

Published: 2021-04-07T07:55:31

Updated: 2024-08-04T11:28:13.846Z

Reserved: 2020-03-31T00:00:00

Link: CVE-2020-11242

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2021-04-07T08:15:14.097

Modified: 2021-04-12T18:48:10.683

Link: CVE-2020-11242

Redhat

No data.

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object