CVE-2020-11240 | Severity.io

Description

Memory corruption due to ioctl command size was incorrectly set to the size of a pointer and not enough storage is allocated for the copy of the user argument in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

Related CPE's

apq8009w_firmware

Vulnerable

apq8017_firmware

Vulnerable

apq8053_firmware

Vulnerable

aqt1000_firmware

Vulnerable

ar8031_firmware

Vulnerable

ar8035_firmware

Vulnerable

csra6620_firmware

Vulnerable

csra6640_firmware

Vulnerable

csrb31024_firmware

Vulnerable

msm8909w_firmware

Vulnerable

msm8917_firmware

Vulnerable

msm8953_firmware

Vulnerable

Vulnerable

pm3003a_firmware

Vulnerable

pm4125_firmware

Vulnerable

Vulnerable

Vulnerable

pm6125_firmware

Vulnerable

pm6150_firmware

Vulnerable

pm6150a_firmware

Vulnerable

pm6150l_firmware

Vulnerable

pm6250_firmware

Vulnerable

pm6350_firmware

Vulnerable

Vulnerable

pm660a_firmware

Vulnerable

pm660l_firmware

Vulnerable

Vulnerable

pm670a_firmware

Vulnerable

pm670l_firmware

Vulnerable

pm7150a_firmware

Vulnerable

pm7150l_firmware

Vulnerable

pm7250_firmware

Vulnerable

pm7250b_firmware

Vulnerable

pm7350c_firmware

Vulnerable

pm8004_firmware

Vulnerable

pm8005_firmware

Vulnerable

pm8008_firmware

Vulnerable

pm8009_firmware

Vulnerable

pm8150_firmware

Vulnerable

pm8150a_firmware

Vulnerable

pm8150b_firmware

Vulnerable

pm8150c_firmware

Vulnerable

pm8150l_firmware

Vulnerable

pm8250_firmware

Vulnerable

pm8350_firmware

Vulnerable

pm8350b_firmware

Vulnerable

pm8350bh_firmware

Vulnerable

pm8350bhs_firmware

Vulnerable

pm8350c_firmware

Vulnerable

Vulnerable

pm855b_firmware

Vulnerable

pm855l_firmware

Vulnerable

pm855p_firmware

Vulnerable

pm8909_firmware

Vulnerable

pm8916_firmware

Vulnerable

pm8937_firmware

Vulnerable

pm8953_firmware

Vulnerable

pm8998_firmware

Vulnerable

pmc1000h_firmware

Vulnerable

pmd9655_firmware

Vulnerable

pme605_firmware

Vulnerable

pmi632_firmware

Vulnerable

pmi8937_firmware

Vulnerable

pmi8952_firmware

Vulnerable

pmi8998_firmware

Vulnerable

pmk7350_firmware

Vulnerable

pmk8002_firmware

Vulnerable

pmk8003_firmware

Vulnerable

pmk8350_firmware

Vulnerable

pmm6155au_firmware

Vulnerable

pmm8155au_firmware

Vulnerable

pmm855au_firmware

Vulnerable

pmr525_firmware

Vulnerable

pmr735a_firmware

Vulnerable

pmr735b_firmware

Vulnerable

pmw3100_firmware

Vulnerable

Vulnerable

Vulnerable

Vulnerable

qat3514_firmware

Vulnerable

qat3516_firmware

Vulnerable

qat3518_firmware

Vulnerable

qat3519_firmware

Vulnerable

qat3522_firmware

Vulnerable

qat3550_firmware

Vulnerable

qat3555_firmware

Vulnerable

qat5515_firmware

Vulnerable

qat5516_firmware

Vulnerable

qat5522_firmware

Vulnerable

qat5533_firmware

Vulnerable

qat5568_firmware

Vulnerable

qbt1500_firmware

Vulnerable

qbt2000_firmware

Vulnerable

qca4020_firmware

Vulnerable

qca6174a_firmware

Vulnerable

qca6310_firmware

Vulnerable

qca6335_firmware

Vulnerable

qca6390_firmware

Vulnerable

qca6391_firmware

Vulnerable

qca6420_firmware

Vulnerable

qca6421_firmware

Vulnerable

qca6426_firmware

Vulnerable

qca6430_firmware

Vulnerable

qca6431_firmware

Vulnerable

qca6436_firmware

Vulnerable

qca6564a_firmware

Vulnerable

qca6564au_firmware

Vulnerable

qca6574_firmware

Vulnerable

qca6574a_firmware

Vulnerable

qca6574au_firmware

Vulnerable

qca6584au_firmware

Vulnerable

qca6595au_firmware

Vulnerable

qca6696_firmware

Vulnerable

qca8337_firmware

Vulnerable

qca9377_firmware

Vulnerable

qca9379_firmware

Vulnerable

qcc1110_firmware

Vulnerable

qcs405_firmware

Vulnerable

qcs410_firmware

Vulnerable

qcs603_firmware

Vulnerable

qcs605_firmware

Vulnerable

qcs610_firmware

Vulnerable

qdm2301_firmware

Vulnerable

qdm2302_firmware

Vulnerable

qdm2305_firmware

Vulnerable

qdm2307_firmware

Vulnerable

qdm2308_firmware

Vulnerable

qdm2310_firmware

Vulnerable

qdm3301_firmware

Vulnerable

qdm3302_firmware

Vulnerable

qdm4643_firmware

Vulnerable

qdm4650_firmware

Vulnerable

qdm5579_firmware

Vulnerable

qdm5620_firmware

Vulnerable

qdm5621_firmware

Vulnerable

qdm5650_firmware

Vulnerable

qdm5652_firmware

Vulnerable

qdm5670_firmware

Vulnerable

qdm5671_firmware

Vulnerable

qdm5677_firmware

Vulnerable

qdm5679_firmware

Vulnerable

qet4100_firmware

Vulnerable

qet4101_firmware

Vulnerable

qet5100_firmware

Vulnerable

qet5100m_firmware

Vulnerable

qet6100_firmware

Vulnerable

qet6110_firmware

Vulnerable

qfe2101_firmware

Vulnerable

qfe2520_firmware

Vulnerable

qfe2550_firmware

Vulnerable

qfe3340_firmware

Vulnerable

qfe4301_firmware

Vulnerable

qfe4302_firmware

Vulnerable

qfe4303_firmware

Vulnerable

qfe4305_firmware

Vulnerable

qfe4308_firmware

Vulnerable

qfe4309_firmware

Vulnerable

qfe4320_firmware

Vulnerable

qfe4373fc_firmware

Vulnerable

qfs2530_firmware

Vulnerable

qfs2580_firmware

Vulnerable

qfs2608_firmware

Vulnerable

qfs2630_firmware

Vulnerable

qln1020_firmware

Vulnerable

qln1021aq_firmware

Vulnerable

qln1030_firmware

Vulnerable

qln1031_firmware

Vulnerable

qln1036aq_firmware

Vulnerable

qln4640_firmware

Vulnerable

qln4642_firmware

Vulnerable

qln4650_firmware

Vulnerable

qln5020_firmware

Vulnerable

qln5030_firmware

Vulnerable

qln5040_firmware

Vulnerable

qpa2625_firmware

Vulnerable

qpa4340_firmware

Vulnerable

qpa4360_firmware

Vulnerable

qpa4361_firmware

Vulnerable

qpa5373_firmware

Vulnerable

qpa5460_firmware

Vulnerable

qpa5461_firmware

Vulnerable

qpa5580_firmware

Vulnerable

qpa5581_firmware

Vulnerable

qpa6560_firmware

Vulnerable

qpa8673_firmware

Vulnerable

qpa8675_firmware

Vulnerable

qpa8686_firmware

Vulnerable

qpa8801_firmware

Vulnerable

qpa8802_firmware

Vulnerable

qpa8803_firmware

Vulnerable

qpa8821_firmware

Vulnerable

qpa8842_firmware

Vulnerable

qpm2630_firmware

Vulnerable

qpm4621_firmware

Vulnerable

qpm4630_firmware

Vulnerable

qpm4640_firmware

Vulnerable

qpm4641_firmware

Vulnerable

qpm4650_firmware

Vulnerable

qpm5541_firmware

Vulnerable

qpm5577_firmware

Vulnerable

qpm5579_firmware

Vulnerable

qpm5621_firmware

Vulnerable

qpm5641_firmware

Vulnerable

qpm5658_firmware

Vulnerable

qpm5670_firmware

Vulnerable

qpm5677_firmware

Vulnerable

qpm5679_firmware

Vulnerable

qpm5870_firmware

Vulnerable

qpm5875_firmware

Vulnerable

qpm6325_firmware

Vulnerable

qpm6375_firmware

Vulnerable

qpm6582_firmware

Vulnerable

qpm6585_firmware

Vulnerable

qpm6621_firmware

Vulnerable

qpm6670_firmware

Vulnerable

qpm8820_firmware

Vulnerable

qpm8830_firmware

Vulnerable

qpm8870_firmware

Vulnerable

qpm8895_firmware

Vulnerable

qsm7250_firmware

Vulnerable

qsm8250_firmware

Vulnerable

qsw6310_firmware

Vulnerable

qsw8573_firmware

Vulnerable

qsw8574_firmware

Vulnerable

qtc410s_firmware

Vulnerable

qtc800h_firmware

Vulnerable

qtc800s_firmware

Vulnerable

qtc801s_firmware

Vulnerable

qtm525_firmware

Vulnerable

qtm527_firmware

Vulnerable

qualcomm215_firmware

Vulnerable

rsw8577_firmware

Vulnerable

sa415m_firmware

Vulnerable

sa515m_firmware

Vulnerable

sa6145p_firmware

Vulnerable

sa6155_firmware

Vulnerable

sa6155p_firmware

Vulnerable

sa8155_firmware

Vulnerable

sa8155p_firmware

Vulnerable

sd_675_firmware

Vulnerable

Vulnerable

sd_8cx_firmware

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

Vulnerable

sd690_5g_firmware

Vulnerable

Vulnerable

sd720g_firmware

Vulnerable

Vulnerable

sd750g_firmware

Vulnerable

Vulnerable

sd765g_firmware

Vulnerable

sd768g_firmware

Vulnerable

Vulnerable

Vulnerable

sd865_5g_firmware

Vulnerable

sd888_5g_firmware

Vulnerable

sda429w_firmware

Vulnerable

sdm429w_firmware

Vulnerable

sdm830_firmware

Vulnerable

sdr051_firmware

Vulnerable

sdr052_firmware

Vulnerable

sdr425_firmware

Vulnerable

sdr660_firmware

Vulnerable

sdr660g_firmware

Vulnerable

sdr675_firmware

Vulnerable

sdr735_firmware

Vulnerable

sdr735g_firmware

Vulnerable

sdr8150_firmware

Vulnerable

sdr8250_firmware

Vulnerable

sdr845_firmware

Vulnerable

sdr865_firmware

Vulnerable

sdw3100_firmware

Vulnerable

Vulnerable

sdx50m_firmware

Vulnerable

Vulnerable

sdx55m_firmware

Vulnerable

Vulnerable

sdxr2_5g_firmware

Vulnerable

sm4125_firmware

Vulnerable

sm6250_firmware

Vulnerable

sm6250p_firmware

Vulnerable

sm7250p_firmware

Vulnerable

sm7350_firmware

Vulnerable

smb1351_firmware

Vulnerable

smb1354_firmware

Vulnerable

smb1355_firmware

Vulnerable

smb1358_firmware

Vulnerable

smb1380_firmware

Vulnerable

smb1381_firmware

Vulnerable

smb1390_firmware

Vulnerable

smb1394_firmware

Vulnerable

smb1395_firmware

Vulnerable

smb1396_firmware

Vulnerable

smb1398_firmware

Vulnerable

smb2351_firmware

Vulnerable

smr525_firmware

Vulnerable

smr526_firmware

Vulnerable

wcd9326_firmware

Vulnerable

wcd9335_firmware

Vulnerable

wcd9340_firmware

Vulnerable

wcd9341_firmware

Vulnerable

wcd9370_firmware

Vulnerable

wcd9375_firmware

Vulnerable

wcd9380_firmware

Vulnerable

wcd9385_firmware

Vulnerable

wcn3610_firmware

Vulnerable

wcn3615_firmware

Vulnerable

wcn3620_firmware

Vulnerable

wcn3660b_firmware

Vulnerable

wcn3680_firmware

Vulnerable

wcn3680b_firmware

Vulnerable

wcn3910_firmware

Vulnerable

wcn3950_firmware

Vulnerable

wcn3980_firmware

Vulnerable

wcn3988_firmware

Vulnerable

wcn3990_firmware

Vulnerable

wcn3991_firmware

Vulnerable

wcn3998_firmware

Vulnerable

wcn3999_firmware

Vulnerable

wcn6740_firmware

Vulnerable

wcn6850_firmware

Vulnerable

wcn6851_firmware

Vulnerable

wcn6856_firmware

Vulnerable

wgr7640_firmware

Vulnerable

wsa8810_firmware

Vulnerable

wsa8815_firmware

Vulnerable

wsa8830_firmware

Vulnerable

wsa8835_firmware

Vulnerable

wtr2955_firmware

Vulnerable

wtr2965_firmware

Vulnerable

wtr3925_firmware

Vulnerable

wtr4905_firmware

Vulnerable

wtr5975_firmware

Vulnerable

wtr6955_firmware

Vulnerable

References

https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin

PatchVendor Advisory

https://www.qualcomm.com/company/product-security/bulletins/january-2021-bulletin

PatchVendor Advisory

Weaknesses

[email protected]

Primary

CWE-131

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 · High

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2021-06-09T03:15:07.417Z

4 years ago

Last modified

2024-11-21T03:57:25.397Z

1 year ago