CVE-2020-11237 | Severity.io

Description

Memory crash when accessing histogram type KPI input received due to lack of check of histogram definition before accessing it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile

Related CPE's

csrb31024_firmware

Vulnerable

pm3003a_firmware

Vulnerable

Vulnerable

pm6150_firmware

Vulnerable

pm6150a_firmware

Vulnerable

pm6150l_firmware

Vulnerable

pm6250_firmware

Vulnerable

pm6350_firmware

Vulnerable

pm7150a_firmware

Vulnerable

pm7150l_firmware

Vulnerable

pm7250_firmware

Vulnerable

pm7250b_firmware

Vulnerable

pm8008_firmware

Vulnerable

pm8009_firmware

Vulnerable

pm8150a_firmware

Vulnerable

pm8150b_firmware

Vulnerable

pm8150c_firmware

Vulnerable

pm8150l_firmware

Vulnerable

pm8250_firmware

Vulnerable

Vulnerable

pm855b_firmware

Vulnerable

pm855l_firmware

Vulnerable

pmi632_firmware

Vulnerable

pmk8002_firmware

Vulnerable

pmk8003_firmware

Vulnerable

pmr525_firmware

Vulnerable

pmr735a_firmware

Vulnerable

pmr735b_firmware

Vulnerable

Vulnerable

Vulnerable

qat3516_firmware

Vulnerable

qat3518_firmware

Vulnerable

qat3519_firmware

Vulnerable

qat3555_firmware

Vulnerable

qat5515_firmware

Vulnerable

qat5516_firmware

Vulnerable

qat5522_firmware

Vulnerable

qat5533_firmware

Vulnerable

qbt1500_firmware

Vulnerable

qbt2000_firmware

Vulnerable

qca6390_firmware

Vulnerable

qca6391_firmware

Vulnerable

qca6421_firmware

Vulnerable

qca6426_firmware

Vulnerable

qca6431_firmware

Vulnerable

qca6436_firmware

Vulnerable

qca6564au_firmware

Vulnerable

qca6574a_firmware

Vulnerable

qca6574au_firmware

Vulnerable

qca6584au_firmware

Vulnerable

qca6595au_firmware

Vulnerable

qca6696_firmware

Vulnerable

qca8337_firmware

Vulnerable

qdm2301_firmware

Vulnerable

qdm2305_firmware

Vulnerable

qdm2307_firmware

Vulnerable

qdm2308_firmware

Vulnerable

qdm2310_firmware

Vulnerable

qdm3301_firmware

Vulnerable

qdm5620_firmware

Vulnerable

qdm5621_firmware

Vulnerable

qdm5650_firmware

Vulnerable

qdm5652_firmware

Vulnerable

qdm5670_firmware

Vulnerable

qdm5671_firmware

Vulnerable

qdm5677_firmware

Vulnerable

qdm5679_firmware

Vulnerable

qet4100_firmware

Vulnerable

qet4101_firmware

Vulnerable

qet5100_firmware

Vulnerable

qet6100_firmware

Vulnerable

qet6110_firmware

Vulnerable

qfs2530_firmware

Vulnerable

qfs2580_firmware

Vulnerable

qln1021aq_firmware

Vulnerable

qln1031_firmware

Vulnerable

qln1036aq_firmware

Vulnerable

qln4640_firmware

Vulnerable

qln4642_firmware

Vulnerable

qln4650_firmware

Vulnerable

qln5020_firmware

Vulnerable

qln5030_firmware

Vulnerable

qln5040_firmware

Vulnerable

qpa2625_firmware

Vulnerable

qpa5580_firmware

Vulnerable

qpa5581_firmware

Vulnerable

qpa6560_firmware

Vulnerable

qpa8673_firmware

Vulnerable

qpa8675_firmware

Vulnerable

qpa8686_firmware

Vulnerable

qpa8801_firmware

Vulnerable

qpa8802_firmware

Vulnerable

qpa8803_firmware

Vulnerable

qpa8821_firmware

Vulnerable

qpa8842_firmware

Vulnerable

qpm4650_firmware

Vulnerable

qpm5620_firmware

Vulnerable

qpm5621_firmware

Vulnerable

qpm5657_firmware

Vulnerable

qpm5658_firmware

Vulnerable

qpm5670_firmware

Vulnerable

qpm5677_firmware

Vulnerable

qpm5679_firmware

Vulnerable

qpm6582_firmware

Vulnerable

qpm6585_firmware

Vulnerable

qpm8820_firmware

Vulnerable

qpm8830_firmware

Vulnerable

qpm8870_firmware

Vulnerable

qpm8895_firmware

Vulnerable

qsm7250_firmware

Vulnerable

qtc800h_firmware

Vulnerable

qtc801s_firmware

Vulnerable

qtm525_firmware

Vulnerable

qtm527_firmware

Vulnerable

sa415m_firmware

Vulnerable

o

qualcomm

sd675_firmware

2

h

qualcomm

sd675

2

Vulnerable

Vulnerable

sd6905g_firmware

Vulnerable

sd720g_firmware

Vulnerable

Vulnerable

sd750g_firmware

Vulnerable

Vulnerable

sd765g_firmware

Vulnerable

sd768g_firmware

Vulnerable

Vulnerable

sd8655g_firmware

Vulnerable

Vulnerable

sdr660_firmware

Vulnerable

sdr675_firmware

Vulnerable

sdr735_firmware

Vulnerable

sdr735g_firmware

Vulnerable

sdr8150_firmware

Vulnerable

sdr8250_firmware

Vulnerable

sdr865_firmware

Vulnerable

Vulnerable

sdx55m_firmware

Vulnerable

sdxr25g_firmware

Vulnerable

sm6250_firmware

Vulnerable

sm6250p_firmware

Vulnerable

sm7250p_firmware

Vulnerable

smb1355_firmware

Vulnerable

smb1381_firmware

Vulnerable

smb1390_firmware

Vulnerable

smb1395_firmware

Vulnerable

smb1396_firmware

Vulnerable

smr525_firmware

Vulnerable

smr526_firmware

Vulnerable

wcd9341_firmware

Vulnerable

wcd9370_firmware

Vulnerable

wcd9375_firmware

Vulnerable

wcd9380_firmware

Vulnerable

wcd9385_firmware

Vulnerable

wcn3950_firmware

Vulnerable

wcn3980_firmware

Vulnerable

wcn3988_firmware

Vulnerable

wcn3990_firmware

Vulnerable

wcn3991_firmware

Vulnerable

wcn3998_firmware

Vulnerable

wcn6850_firmware

Vulnerable

wcn6851_firmware

Vulnerable

wsa8810_firmware

Vulnerable

wsa8815_firmware

Vulnerable

wsa8830_firmware

Vulnerable

wsa8835_firmware

Vulnerable

References

https://www.qualcomm.com/company/product-security/bulletins/april-2021-bulletin

Vendor Advisory

Weaknesses

[email protected]

Primary

CWE-20

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 · High

CVSS V3.1
CVSS V3.0
CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-04-07T08:15:14.050

4 years ago

Last modified

2021-04-12T18:48:57.217

4 years ago