{"containers": {"cna": {"affected": [{"product": "Snapdragon Wired Infrastructure and Networking", "vendor": "Qualcomm, Inc.", "versions": [{"status": "affected", "version": "AR7420, AR9580, CSR8811, IPQ4018, IPQ4019, IPQ4028, IPQ4029, QCA10901, QCA4024, QCA7500, QCA7520, QCA7550, QCA8075, QCA9880, QCA9886, QCA9888, QCA9889, QCA9898, QCA9984, QCA9992, QCA9994, QCN3018, QFE1922, QFE1952, WCD9340, WSA8810"}]}], "descriptions": [{"lang": "en", "value": "Image address is dereferenced before validating its range which can cause potential QSEE information leakage in Snapdragon Wired Infrastructure and Networking"}], "problemTypes": [{"descriptions": [{"description": "Buffer Over-read in Trustzone", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2021-06-09T05:00:51.000Z", "orgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "shortName": "qualcomm"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "product-security@qualcomm.com", "ID": "CVE-2020-11266", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Snapdragon Wired Infrastructure and Networking", "version": {"version_data": [{"version_value": "AR7420, AR9580, CSR8811, IPQ4018, IPQ4019, IPQ4028, IPQ4029, QCA10901, QCA4024, QCA7500, QCA7520, QCA7550, QCA8075, QCA9880, QCA9886, QCA9888, QCA9889, QCA9898, QCA9984, QCA9992, QCA9994, QCN3018, QFE1922, QFE1952, WCD9340, WSA8810"}]}}]}, "vendor_name": "Qualcomm, Inc."}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Image address is dereferenced before validating its range which can cause potential QSEE information leakage in Snapdragon Wired Infrastructure and Networking"}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Buffer Over-read in Trustzone"}]}]}, "references": {"reference_data": [{"name": "https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin", "refsource": "CONFIRM", "url": "https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-04T11:28:13.451Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin"}]}]}, "cveMetadata": {"assignerOrgId": "2cfc7d3e-20d3-47ac-8db7-1b7285aff15f", "assignerShortName": "qualcomm", "cveId": "CVE-2020-11266", "datePublished": "2021-06-09T05:00:52.000Z", "dateReserved": "2020-03-31T00:00:00.000Z", "dateUpdated": "2024-08-04T11:28:13.451Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:ar7420_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "C83C4477-A329-4DC4-A2B4-6475B41DADAD", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:ar7420:-:*:*:*:*:*:*:*", "matchCriteriaId": "24715D16-FBEC-4730-B644-17D36126BEBE", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:ar9580_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "CF02B895-F7AA-415D-AF39-4DC61145E385", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:ar9580:-:*:*:*:*:*:*:*", "matchCriteriaId": "C85ABA2D-F13F-4733-8B99-4B21FACC9FDF", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:csr8811_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "D4CAA848-413D-4C63-823B-BFCE95C7740C", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:csr8811:-:*:*:*:*:*:*:*", "matchCriteriaId": "1AA32CC0-DE30-4B15-8EC6-1FAF14C5C4E2", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:ipq4018_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "1D65E62B-95CA-4229-A61B-F4FB70466B6E", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:ipq4018:-:*:*:*:*:*:*:*", "matchCriteriaId": "1339CEEF-34C9-426E-864B-6C7B68E72CAA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:ipq4019_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "94CB547F-0078-47CD-B511-06DE96882D5A", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:ipq4019:-:*:*:*:*:*:*:*", "matchCriteriaId": "AA679375-BB14-4B24-8AD9-B2BFBACE2FDB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:ipq4028_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "3525CD2A-CE43-4B42-B8C2-9B19B2551214", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:ipq4028:-:*:*:*:*:*:*:*", "matchCriteriaId": "010DBDB1-F1A3-4805-BDD2-84CBFA0A0BE1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:ipq4029_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "3D21F293-B9C7-46CB-8D83-BEE27E899BC3", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:ipq4029:-:*:*:*:*:*:*:*", "matchCriteriaId": "C4BA4D00-D7B2-4152-BD82-E6F572655AF3", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca10901_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "33A95333-6940-4F1C-826B-8FD6D5F93E34", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca10901:-:*:*:*:*:*:*:*", "matchCriteriaId": "187D5216-D296-4079-B709-F830C8981848", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca4024_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "C359D1E7-6E0A-41B5-ABE5-B55598960700", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca4024:-:*:*:*:*:*:*:*", "matchCriteriaId": "B4DC3CE7-0C4A-458B-A42E-8F80C062DD5F", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca7500_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "9D4F8296-D8D0-42C6-AAD2-24DA0DB403D4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca7500:-:*:*:*:*:*:*:*", "matchCriteriaId": "14EC7373-E5F3-4D2B-B727-CAEE772B74BB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca7520_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "AC1E2E17-2A9C-4A53-A3AB-719367670DC5", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca7520:-:*:*:*:*:*:*:*", "matchCriteriaId": "AEAB907B-E683-4002-A2D0-5ADF13456514", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca7550_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "F53C35F5-BD5F-4B4B-87EF-08CF137D3165", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca7550:-:*:*:*:*:*:*:*", "matchCriteriaId": "4AA0D5E0-9F4E-48DD-8ACE-94A77ABD46FE", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca8075_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "CC8A5A87-7D62-4EB7-962A-0F160DE3E889", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca8075:-:*:*:*:*:*:*:*", "matchCriteriaId": "7B68D126-7F49-4FFA-8AF8-78120973D78E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca9880_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "7F81D132-B2DD-4D09-8561-21A2CFBCC9FA", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca9880:-:*:*:*:*:*:*:*", "matchCriteriaId": "F099A893-232B-48FB-81B3-F01AF2A19426", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca9886_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "311229F9-4A32-462D-AE8D-E5E2B2C416CE", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca9886:-:*:*:*:*:*:*:*", "matchCriteriaId": "5A523C3F-FB62-4728-8173-4C117C28AC5A", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca9888_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "EF227702-EEFC-43CC-AC80-81EA6E4927E0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca9888:-:*:*:*:*:*:*:*", "matchCriteriaId": "AE5DFEA5-EA29-40B6-83DB-883B276E8245", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca9889_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "728CCD27-ED06-49FD-AECD-9B0856813EDF", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca9889:-:*:*:*:*:*:*:*", "matchCriteriaId": "1D181868-AE93-4116-B45F-81D94F537227", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca9898_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "49882EDE-598D-40B2-8A65-D258241E669F", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca9898:-:*:*:*:*:*:*:*", "matchCriteriaId": "F1572D87-4EC2-4B95-826A-B03FDD4985AE", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca9984_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "93BA2DC9-5B4F-4F8F-8B3D-8DA01043B9BD", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca9984:-:*:*:*:*:*:*:*", "matchCriteriaId": "8FA8880F-E513-4390-B839-C5D86E7A89EB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca9992_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "5D8FB66C-5616-4C3A-9CAE-7610519ACA1A", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca9992:-:*:*:*:*:*:*:*", "matchCriteriaId": "408C8494-E7D8-4F99-9B04-7E84A31C799B", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qca9994_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "BD5B18AA-0699-4F21-9D3E-C45B071B4903", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qca9994:-:*:*:*:*:*:*:*", "matchCriteriaId": "DDC4C800-C9E3-4DB0-AE99-3F75D3660DEC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qcn3018_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "7D7BE08E-3B98-40CD-97F8-F504AC05E4DF", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qcn3018:-:*:*:*:*:*:*:*", "matchCriteriaId": "04D25267-A4DC-40B7-9C56-93312C50E359", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qfe1922_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "FB11E143-E871-42D7-8B8B-A0CB9D33EC63", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qfe1922:-:*:*:*:*:*:*:*", "matchCriteriaId": "B46CE16F-74E6-4B6C-9423-0634D54EC9AC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:qfe1952_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "0DD24EC7-16C3-4192-96A7-4F820C9531FC", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:qfe1952:-:*:*:*:*:*:*:*", "matchCriteriaId": "9C3739CB-D4FE-4247-A32C-4641741DCF0C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:wcd9340_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "8BA28CC6-C8BB-4F50-BFE3-A59F664A4F54", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:wcd9340:-:*:*:*:*:*:*:*", "matchCriteriaId": "94D2BDF1-764C-48BA-8944-3275E8768078", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:qualcomm:wsa8810_firmware:-:*:*:*:*:*:*:*", "matchCriteriaId": "15307882-7039-43E9-9BA3-035045988B99", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:qualcomm:wsa8810:-:*:*:*:*:*:*:*", "matchCriteriaId": "AA85B322-E593-4499-829A-CC6D70BAE884", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Image address is dereferenced before validating its range which can cause potential QSEE information leakage in Snapdragon Wired Infrastructure and Networking"}, {"lang": "es", "value": "Una direcci\u00f3n de la imagen es desreferenciada antes de validar su rango, lo que puede causar una posible filtraci\u00f3n de informaci\u00f3n QSEE en Snapdragon Wired Infrastructure and Networking"}], "id": "CVE-2020-11266", "lastModified": "2024-11-21T04:57:34.227", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.0, "impactScore": 4.0, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2021-06-09T05:15:07.723", "references": [{"source": "product-security@qualcomm.com", "tags": ["Vendor Advisory"], "url": "https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin"}], "sourceIdentifier": "product-security@qualcomm.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}