CVE-2020-11263 - Vulnerability Details

An integer overflow due to improper check performed after the address and size passed are aligned in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Changed

Confidentiality Impact High

Integrity Impact Low

Availability Impact Low

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.00112.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Qualcomm, Inc.

Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

affected

Version	Status	Constraints
AR8035, QCA6390, QCA6391, QCA6426, QCA6436, QCA8337, QCA9984, QCM2290, QCM4290, QCS2290, QCS405, QCS410, QCS4290, QCS610, QCX315, QRB5165, QRB5165N, QSM8250, SD 675, SD460, SD480, SD662, SD675, SD678, SD690 5G, SD720G, SD730, SD750G, SD765, SD765G, SD768G, SD7c, SD865 5G, SD870, SDX55, SDX55M, SDXR2 5G, SM6225, SM6250, SM6250P, SM6375, SM7250P, WCD9341, WCD9370, WCD9375, WCD9380, WCD9385, WCN3910, WCN3950, WCN3980, WCN3988, WCN3990, WCN3991, WCN3998, WCN3999, WCN6850, WCN6851, WSA8810, WSA8815, WSA8830, WSA8835	affected	—

Configuration 1 [-]

AND

cpe:2.3:o:qualcomm:ar8035_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:ar8035:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:qualcomm:qca6390_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6390:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:qualcomm:qca6391_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6391:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:qualcomm:qca6426_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6426:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:qualcomm:qca6436_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca6436:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:qualcomm:qca8337_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca8337:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:qualcomm:qca9984_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qca9984:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:qualcomm:qcm2290_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcm2290:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:qualcomm:qcm4290_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcm4290:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:qualcomm:qcs2290_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs2290:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:qualcomm:qcs405_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs405:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:qualcomm:qcs410_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs410:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:qualcomm:qcs4290_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs4290:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:qualcomm:qcs610_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcs610:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:qualcomm:qcx315_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qcx315:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:qualcomm:qrb5165_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qrb5165:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:qualcomm:qrb5165n_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qrb5165n:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:qualcomm:qsm8250_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:qsm8250:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:qualcomm:sd460_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd460:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:qualcomm:sd480_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd480:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:qualcomm:sd662_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd662:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:qualcomm:sd675_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd675:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:qualcomm:sd678_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd678:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:qualcomm:sd690_5g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd690_5g:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:qualcomm:sd720g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd720g:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:qualcomm:sd730_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd730:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:qualcomm:sd750g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd750g:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:o:qualcomm:sd765_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd765:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

cpe:2.3:o:qualcomm:sd765g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd765g:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:o:qualcomm:sd768g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd768g:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:o:qualcomm:sd7c_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd7c:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND

cpe:2.3:o:qualcomm:sd865_5g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd865_5g:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND

cpe:2.3:o:qualcomm:sd870_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd870:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND

cpe:2.3:o:qualcomm:sdx55_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx55:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND

cpe:2.3:o:qualcomm:sdx55m_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdx55m:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND

cpe:2.3:o:qualcomm:sdxr2_5g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sdxr2_5g:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND

cpe:2.3:o:qualcomm:sm6225_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm6225:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND

cpe:2.3:o:qualcomm:sm6250_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm6250:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND

cpe:2.3:o:qualcomm:sm6250p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm6250p:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND

cpe:2.3:o:qualcomm:sm6375_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm6375:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND

cpe:2.3:o:qualcomm:sm7250p_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sm7250p:-:*:*:*:*:*:*:*

Configuration 42 [-]

AND

cpe:2.3:o:qualcomm:wcd9341_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9341:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND

cpe:2.3:o:qualcomm:wcd9370_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9370:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND

cpe:2.3:o:qualcomm:wcd9375_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9375:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND

cpe:2.3:o:qualcomm:wcd9380_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9380:-:*:*:*:*:*:*:*

Configuration 46 [-]

AND

cpe:2.3:o:qualcomm:wcd9385_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcd9385:-:*:*:*:*:*:*:*

Configuration 47 [-]

AND

cpe:2.3:o:qualcomm:wcn3910_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3910:-:*:*:*:*:*:*:*

Configuration 48 [-]

AND

cpe:2.3:o:qualcomm:wcn3950_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3950:-:*:*:*:*:*:*:*

Configuration 49 [-]

AND

cpe:2.3:o:qualcomm:wcn3980_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3980:-:*:*:*:*:*:*:*

Configuration 50 [-]

AND

cpe:2.3:o:qualcomm:wcn3988_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3988:-:*:*:*:*:*:*:*

Configuration 51 [-]

AND

cpe:2.3:o:qualcomm:wcn3990_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3990:-:*:*:*:*:*:*:*

Configuration 52 [-]

AND

cpe:2.3:o:qualcomm:wcn3991_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3991:-:*:*:*:*:*:*:*

Configuration 53 [-]

AND

cpe:2.3:o:qualcomm:wcn3998_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3998:-:*:*:*:*:*:*:*

Configuration 54 [-]

AND

cpe:2.3:o:qualcomm:wcn3999_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn3999:-:*:*:*:*:*:*:*

Configuration 55 [-]

AND

cpe:2.3:o:qualcomm:wcn6850_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn6850:-:*:*:*:*:*:*:*

Configuration 56 [-]

AND

cpe:2.3:o:qualcomm:wcn6851_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wcn6851:-:*:*:*:*:*:*:*

Configuration 57 [-]

AND

cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*

Configuration 58 [-]

AND

cpe:2.3:o:qualcomm:wsa8815_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8815:-:*:*:*:*:*:*:*

Configuration 59 [-]

AND

cpe:2.3:o:qualcomm:wsa8830_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8830:-:*:*:*:*:*:*:*

Configuration 60 [-]

AND

cpe:2.3:o:qualcomm:wsa8835_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:wsa8835:-:*:*:*:*:*:*:*

Configuration 61 [-]

AND

cpe:2.3:o:qualcomm:sd_675_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:qualcomm:sd_675:-:*:*:*:*:*:*:*

No data.

Project Subscriptions

Vendors	Products
Qualcomm Subscribe	Ar8035 Subscribe Ar8035 Firmware Subscribe Qca6390 Subscribe Qca6390 Firmware Subscribe Qca6391 Subscribe Qca6391 Firmware Subscribe Qca6426 Subscribe Qca6426 Firmware Subscribe Qca6436 Subscribe Qca6436 Firmware Subscribe Qca8337 Subscribe Qca8337 Firmware Subscribe Qca9984 Subscribe Qca9984 Firmware Subscribe Qcm2290 Subscribe Qcm2290 Firmware Subscribe Qcm4290 Subscribe Qcm4290 Firmware Subscribe Qcs2290 Subscribe Qcs2290 Firmware Subscribe Qcs405 Subscribe Qcs405 Firmware Subscribe Qcs410 Subscribe Qcs410 Firmware Subscribe Qcs4290 Subscribe Qcs4290 Firmware Subscribe Qcs610 Subscribe Qcs610 Firmware Subscribe Qcx315 Subscribe Qcx315 Firmware Subscribe Qrb5165 Subscribe Qrb5165 Firmware Subscribe Qrb5165n Subscribe Qrb5165n Firmware Subscribe Qsm8250 Subscribe Qsm8250 Firmware Subscribe Sd460 Subscribe Sd460 Firmware Subscribe Sd480 Subscribe Sd480 Firmware Subscribe Sd662 Subscribe Sd662 Firmware Subscribe Sd675 Subscribe Sd675 Firmware Subscribe Sd678 Subscribe Sd678 Firmware Subscribe Sd690 5g Subscribe Sd690 5g Firmware Subscribe Sd720g Subscribe Sd720g Firmware Subscribe Sd730 Subscribe Sd730 Firmware Subscribe Sd750g Subscribe Sd750g Firmware Subscribe Sd765 Subscribe Sd765 Firmware Subscribe Sd765g Subscribe Sd765g Firmware Subscribe Sd768g Subscribe Sd768g Firmware Subscribe Sd7c Subscribe Sd7c Firmware Subscribe Sd865 5g Subscribe Sd865 5g Firmware Subscribe Sd870 Subscribe Sd870 Firmware Subscribe Sd 675 Subscribe Sd 675 Firmware Subscribe Sdx55 Subscribe Sdx55 Firmware Subscribe Sdx55m Subscribe Sdx55m Firmware Subscribe Sdxr2 5g Subscribe Sdxr2 5g Firmware Subscribe Sm6225 Subscribe Sm6225 Firmware Subscribe Sm6250 Subscribe Sm6250 Firmware Subscribe Sm6250p Subscribe Sm6250p Firmware Subscribe Sm6375 Subscribe Sm6375 Firmware Subscribe Sm7250p Subscribe Sm7250p Firmware Subscribe Wcd9341 Subscribe Wcd9341 Firmware Subscribe Wcd9370 Subscribe Wcd9370 Firmware Subscribe Wcd9375 Subscribe Wcd9375 Firmware Subscribe Wcd9380 Subscribe Wcd9380 Firmware Subscribe Wcd9385 Subscribe Wcd9385 Firmware Subscribe Wcn3910 Subscribe Wcn3910 Firmware Subscribe Wcn3950 Subscribe Wcn3950 Firmware Subscribe Wcn3980 Subscribe Wcn3980 Firmware Subscribe Wcn3988 Subscribe Wcn3988 Firmware Subscribe Wcn3990 Subscribe Wcn3990 Firmware Subscribe Wcn3991 Subscribe Wcn3991 Firmware Subscribe Wcn3998 Subscribe Wcn3998 Firmware Subscribe Wcn3999 Subscribe Wcn3999 Firmware Subscribe Wcn6850 Subscribe Wcn6850 Firmware Subscribe Wcn6851 Subscribe Wcn6851 Firmware Subscribe Wsa8810 Subscribe Wsa8810 Firmware Subscribe Wsa8815 Subscribe Wsa8815 Firmware Subscribe Wsa8830 Subscribe Wsa8830 Firmware Subscribe Wsa8835 Subscribe Wsa8835 Firmware Subscribe

Advisories

Source	ID	Title
EUVD	EUVD-2020-3617	An integer overflow due to improper check performed after the address and size passed are aligned in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://www.qualcomm.com/company/product-security/bulletins/december-2021-bulletin

History

No history.

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: qualcomm

Published: 2022-01-03T07:25:35

Updated: 2024-08-04T11:28:13.861Z

Reserved: 2020-03-31T00:00:00

Link: CVE-2020-11263

Vulnrichment

No data.

NVD

Status : Modified

Published: 2022-01-03T08:15:07.497

Modified: 2024-11-21T04:57:33.603

Link: CVE-2020-11263

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-190

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Changed

Confidentiality Impact High

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object