Lucene search

[email protected]CVE-2020-11212

HistoryJan 21, 2021 - 10:15 a.m.

CVE-2020-11212

2021-01-2110:15:14

CWE-125

[email protected]

web.nvd.nist.gov

cve

2020

11212

out of bounds reads

nan beacons

ouis

snapdragon

auto

compute

connectivity

consumer electronics

consumer iot

industrial iot

iot

mobile

voice & music

wired infrastructure

networking

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.0%

JSON

Out of bounds reads while parsing NAN beacons attributes and OUIs due to improper length of field check in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking

Affected configurations

NVD

Node

qualcommapq8009Match-

qualcommapq8016Match-

qualcommapq8017Match-

qualcommapq8037Match-

qualcommapq8039Match-

qualcommapq8053Match-

qualcommapq8064auMatch-

qualcommapq8076Match-

qualcommapq8092Match-

qualcommapq8094Match-

qualcommapq8096auMatch-

qualcommaqt1000Match-

qualcommar8031Match-

qualcommar8035Match-

qualcommar8151Match-

qualcommar9380Match-

qualcommcsr6030Match-

qualcommcsr8811Match-

qualcommcsra6620Match-

qualcommcsra6640Match-

qualcommcsrb31024Match-

qualcommipq4018Match-

qualcommipq4028Match-

qualcommipq4029Match-

qualcommipq5010Match-

qualcommipq5018Match-

qualcommipq6000Match-

qualcommipq6005Match-

qualcommipq6010Match-

qualcommipq6018Match-

qualcommipq6028Match-

qualcommipq8064Match-

qualcommipq8069Match-

qualcommipq8070Match-

qualcommipq8070aMatch-

qualcommipq8071Match-

qualcommipq8071aMatch-

qualcommipq8072Match-

qualcommipq8072aMatch-

qualcommipq8074Match-

qualcommipq8074aMatch-

qualcommipq8076Match-

qualcommipq8076aMatch-

qualcommipq8078Match-

qualcommipq8078aMatch-

qualcommipq8173Match-

qualcommipq8174Match-

qualcommmdm8215Match-

qualcommmdm9206Match-

qualcommmdm9215Match-

qualcommmdm9250Match-

qualcommmdm9310Match-

qualcommmdm9607Match-

qualcommmdm9615Match-

qualcommmdm9626Match-

qualcommmdm9628Match-

qualcommmdm9640Match-

qualcommmdm9645Match-

qualcommmdm9650Match-

qualcommmdm9655Match-

qualcommmsm8108Match-

qualcommmsm8208Match-

qualcommmsm8209Match-

qualcommmsm8608Match-

qualcommmsm8916Match-

qualcommmsm8917Match-

qualcommmsm8920Match-

qualcommmsm8929Match-

qualcommmsm8937Match-

qualcommmsm8939Match-

qualcommmsm8940Match-

qualcommmsm8953Match-

qualcommmsm8976Match-

qualcommmsm8992Match-

qualcommmsm8994Match-

qualcommmsm8996auMatch-

qualcommpm215Match-

qualcommpm3003aMatch-

qualcommpm4125Match-

qualcommpm439Match-

qualcommpm456Match-

qualcommpm6125Match-

qualcommpm6150Match-

qualcommpm6150aMatch-

qualcommpm6150lMatch-

qualcommpm6250Match-

qualcommpm6350Match-

qualcommpm640aMatch-

qualcommpm640lMatch-

qualcommpm640pMatch-

qualcommpm660Match-

qualcommpm660aMatch-

qualcommpm660lMatch-

qualcommpm670Match-

qualcommpm670aMatch-

qualcommpm670lMatch-

qualcommpm7150aMatch-

qualcommpm7150lMatch-

qualcommpm7250Match-

qualcommpm7250bMatch-

qualcommpm8004Match-

qualcommpm8005Match-

qualcommpm8008Match-

qualcommpm8009Match-

qualcommpm8018Match-

qualcommpm8019Match-

qualcommpm8150Match-

qualcommpm8150aMatch-

qualcommpm8150bMatch-

qualcommpm8150cMatch-

qualcommpm8150lMatch-

qualcommpm8250Match-

qualcommpm8350Match-

qualcommpm8350bMatch-

qualcommpm8350bhMatch-

qualcommpm8350cMatch-

qualcommpm855Match-

qualcommpm855aMatch-

qualcommpm855bMatch-

qualcommpm855lMatch-

qualcommpm855pMatch-

qualcommpm8909Match-

qualcommpm8916Match-

qualcommpm8937Match-

qualcommpm8940Match-

qualcommpm8952Match-

qualcommpm8953Match-

qualcommpm8956Match-

qualcommpm8994Match-

qualcommpm8996Match-

qualcommpm8998Match-

qualcommpmc1000hMatch-

qualcommpmd9607Match-

qualcommpmd9645Match-

qualcommpmd9655Match-

qualcommpme605Match-

qualcommpmi632Match-

qualcommpmi8937Match-

qualcommpmi8940Match-

qualcommpmi8952Match-

qualcommpmi8994Match-

qualcommpmi8996Match-

qualcommpmi8998Match-

qualcommpmk8001Match-

qualcommpmk8002Match-

qualcommpmk8003Match-

qualcommpmk8350Match-

qualcommpmm6155auMatch-

qualcommpmm8155auMatch-

qualcommpmm8195auMatch-

qualcommpmm855auMatch-

qualcommpmm8920auMatch-

qualcommpmm8996auMatch-

qualcommpmp8074Match-

qualcommpmr525Match-

qualcommpmr735aMatch-

qualcommpmr735bMatch-

qualcommpmx20Match-

qualcommpmx24Match-

qualcommpmx50Match-

qualcommpmx55Match-

qualcommqat3514Match-

qualcommqat3516Match-

qualcommqat3518Match-

qualcommqat3519Match-

qualcommqat3522Match-

qualcommqat3550Match-

qualcommqat3555Match-

qualcommqat5515Match-

qualcommqat5516Match-

qualcommqat5522Match-

qualcommqat5533Match-

qualcommqat5568Match-

qualcommqbt1000Match-

qualcommqbt1500Match-

qualcommqbt2000Match-

qualcommqca0000Match-

qualcommqca1023Match-

qualcommqca1990Match-

qualcommqca1990aMatch-

qualcommqca4010Match-

qualcommqca4020Match-

qualcommqca4024Match-

qualcommqca4531Match-

qualcommqca6174Match-

qualcommqca6174aMatch-

qualcommqca6175aMatch-

qualcommqca6234Match-

qualcommqca6310Match-

qualcommqca6320Match-

qualcommqca6335Match-

qualcommqca6390Match-

qualcommqca6391Match-

qualcommqca6420Match-

qualcommqca6421Match-

qualcommqca6426Match-

qualcommqca6428Match-

qualcommqca6430Match-

qualcommqca6431Match-

qualcommqca6436Match-

qualcommqca6438Match-

qualcommqca6564Match-

qualcommqca6564aMatch-

qualcommqca6564auMatch-

qualcommqca6574Match-

qualcommqca6574aMatch-

qualcommqca6574auMatch-

qualcommqca6584Match-

qualcommqca6584auMatch-

qualcommqca6595Match-

qualcommqca6595auMatch-

qualcommqca6694Match-

qualcommqca6696Match-

qualcommqca8072Match-

qualcommqca8075Match-

qualcommqca8081Match-

qualcommqca8337Match-

qualcommqca9367Match-

qualcommqca9369Match-

qualcommqca9377Match-

qualcommqca9378Match-

qualcommqca9378aMatch-

qualcommqca9379Match-

qualcommqca9886Match-

qualcommqca9888Match-

qualcommqca9889Match-

qualcommqca9898Match-

qualcommqca9980Match-

qualcommqca9984Match-

qualcommqca9990Match-

qualcommqca9992Match-

qualcommqca9994Match-

qualcommqcc112Match-

qualcommqcm2290Match-

qualcommqcm4290Match-

qualcommqcm6125Match-

qualcommqcn5021Match-

qualcommqcn5022Match-

qualcommqcn5024Match-

qualcommqcn5052Match-

qualcommqcn5054Match-

qualcommqcn5064Match-

qualcommqcn5121Match-

qualcommqcn5122Match-

qualcommqcn5124Match-

qualcommqcn5152Match-

qualcommqcn5154Match-

qualcommqcn5164Match-

qualcommqcn5550Match-

qualcommqcn6023Match-

qualcommqcn6024Match-

qualcommqcn7605Match-

qualcommqcn7606Match-

qualcommqcn9000Match-

qualcommqcn9012Match-

qualcommqcn9022Match-

qualcommqcn9024Match-

qualcommqcn9070Match-

qualcommqcn9072Match-

qualcommqcn9074Match-

qualcommqcn9100Match-

qualcommqcs2290Match-

qualcommqcs405Match-

qualcommqcs410Match-

qualcommqcs4290Match-

qualcommqcs603Match-

qualcommqcs605Match-

qualcommqcs610Match-

qualcommqcs6125Match-

qualcommqdm2301Match-

qualcommqdm2302Match-

qualcommqdm2305Match-

qualcommqdm2307Match-

qualcommqdm2308Match-

qualcommqdm2310Match-

qualcommqdm3301Match-

qualcommqdm4643Match-

qualcommqdm4650Match-

qualcommqdm5620Match-

qualcommqdm5621Match-

qualcommqdm5650Match-

qualcommqdm5652Match-

qualcommqdm5670Match-

qualcommqdm5671Match-

qualcommqdm5677Match-

qualcommqdm5679Match-

qualcommqet4100Match-

qualcommqet4101Match-

qualcommqet4200aqMatch-

qualcommqet5100Match-

qualcommqet5100mMatch-

qualcommqet6100Match-

qualcommqet6110Match-

qualcommqfe1035Match-

qualcommqfe1040Match-

qualcommqfe1045Match-

qualcommqfe1100Match-

qualcommqfe2080fcMatch-

qualcommqfe2081fcMatch-

qualcommqfe2082fcMatch-

qualcommqfe2101Match-

qualcommqfe2310Match-

qualcommqfe2320Match-

qualcommqfe2330Match-

qualcommqfe2340Match-

qualcommqfe2520Match-

qualcommqfe2550Match-

qualcommqfe3100Match-

qualcommqfe3320Match-

qualcommqfe3335Match-

qualcommqfe3340Match-

qualcommqfe3345Match-

qualcommqfe3440fcMatch-

qualcommqfe4301Match-

qualcommqfe4302Match-

qualcommqfe4303Match-

qualcommqfe4305Match-

qualcommqfe4308Match-

qualcommqfe4309Match-

qualcommqfe4320Match-

qualcommqfe4373fcMatch-

qualcommqfe4455fcMatch-

qualcommqfe4465fcMatch-

qualcommqfs2530Match-

qualcommqfs2580Match-

qualcommqfs2608Match-

qualcommqfs2630Match-

qualcommqln1020Match-

qualcommqln1021aqMatch-

qualcommqln1030Match-

qualcommqln1031Match-

qualcommqln1035bdMatch-

qualcommqln1036aqMatch-

qualcommqln4640Match-

qualcommqln4642Match-

qualcommqln4650Match-

qualcommqln5020Match-

qualcommqln5030Match-

qualcommqln5040Match-

qualcommqpa2625Match-

qualcommqpa4340Match-

qualcommqpa4360Match-

qualcommqpa4361Match-

qualcommqpa5373Match-

qualcommqpa5460Match-

qualcommqpa5461Match-

qualcommqpa5580Match-

qualcommqpa5581Match-

qualcommqpa6560Match-

qualcommqpa8673Match-

qualcommqpa8675Match-

qualcommqpa8686Match-

qualcommqpa8688Match-

qualcommqpa8801Match-

qualcommqpa8802Match-

qualcommqpa8803Match-

qualcommqpa8821Match-

qualcommqpa8842Match-

qualcommqpm2630Match-

qualcommqpm4621Match-

qualcommqpm4630Match-

qualcommqpm4640Match-

qualcommqpm4641Match-

qualcommqpm4650Match-

qualcommqpm5541Match-

qualcommqpm5577Match-

qualcommqpm5579Match-

qualcommqpm5620Match-

qualcommqpm5621Match-

qualcommqpm5641Match-

qualcommqpm5657Match-

qualcommqpm5658Match-

qualcommqpm5670Match-

qualcommqpm5677Match-

qualcommqpm5679Match-

qualcommqpm5870Match-

qualcommqpm5875Match-

qualcommqpm6325Match-

qualcommqpm6375Match-

qualcommqpm6582Match-

qualcommqpm6585Match-

qualcommqpm6621Match-

qualcommqpm6670Match-

qualcommqpm8820Match-

qualcommqpm8830Match-

qualcommqpm8870Match-

qualcommqpm8895Match-

qualcommqsm7250Match-

qualcommqsw6310Match-

qualcommqsw8573Match-

qualcommqsw8574Match-

qualcommqtc410sMatch-

qualcommqtc800hMatch-

qualcommqtc800sMatch-

qualcommqtc800tMatch-

qualcommqtc801sMatch-

qualcommqtm525Match-

qualcommqtm527Match-

qualcommqualcomm215Match-

qualcommrgr7640auMatch-

qualcommrsw8577Match-

qualcommsa415mMatch-

qualcommsa515mMatch-

qualcommsa6145pMatch-

qualcommsa6150pMatch-

qualcommsa6155Match-

qualcommsa6155pMatch-

qualcommsa8150pMatch-

qualcommsa8155Match-

qualcommsa8155pMatch-

qualcommsa8195pMatch-

qualcommsd205Match-

qualcommsd210Match-

qualcommsd429Match-

qualcommsd439Match-

qualcommsd450Match-

qualcommsd455Match-

qualcommsd460Match-

qualcommsd632Match-

qualcommsd636Match-

qualcommsd660Match-

qualcommsd662Match-

qualcommsd665Match-

qualcommsd670Match-

qualcommsd675Match-

qualcommsd6905gMatch-

qualcommsd710Match-

qualcommsd712Match-

qualcommsd720gMatch-

qualcommsd730Match-

qualcommsd750gMatch-

qualcommsd765Match-

qualcommsd765gMatch-

qualcommsd768gMatch-

qualcommsd7cMatch-

qualcommsd820Match-

qualcommsd821Match-

qualcommsd835Match-

qualcommsd845Match-

qualcommsd850Match-

qualcommsd855Match-

qualcommsd8655gMatch-

qualcommsd8885gMatch-

qualcommsd8cMatch-

qualcommsd8cxMatch-

qualcommsdm630Match-

qualcommsdm830Match-

qualcommsdr051Match-

qualcommsdr052Match-

qualcommsdr425Match-

qualcommsdr660Match-

qualcommsdr660gMatch-

qualcommsdr675Match-

qualcommsdr735Match-

qualcommsdr735gMatch-

qualcommsdr8150Match-

qualcommsdr8250Match-

qualcommsdr845Match-

qualcommsdr865Match-

qualcommsdx20Match-

qualcommsdx20mMatch-

qualcommsdx24Match-

qualcommsdx50mMatch-

qualcommsdx55Match-

qualcommsdx55mMatch-

qualcommsdxr1Match-

qualcommsdxr25gMatch-

qualcommsm4125Match-

qualcommsm4350Match-

qualcommsm6250Match-

qualcommsm6250pMatch-

qualcommsm7250pMatch-

qualcommsmb1350Match-

qualcommsmb1351Match-

qualcommsmb1354Match-

qualcommsmb1355Match-

qualcommsmb1357Match-

qualcommsmb1358Match-

qualcommsmb1360Match-

qualcommsmb1380Match-

qualcommsmb1381Match-

qualcommsmb1390Match-

qualcommsmb1395Match-

qualcommsmb1396Match-

qualcommsmb1398Match-

qualcommsmb231Match-

qualcommsmb2351Match-

qualcommsmb358sMatch-

qualcommsmr525Match-

qualcommsmr526Match-

qualcommsmr545Match-

qualcommsmr546Match-

qualcommwcd9306Match-

qualcommwcd9326Match-

qualcommwcd9330Match-

qualcommwcd9335Match-

qualcommwcd9340Match-

qualcommwcd9341Match-

qualcommwcd9360Match-

qualcommwcd9370Match-

qualcommwcd9371Match-

qualcommwcd9375Match-

qualcommwcd9380Match-

qualcommwcd9385Match-

qualcommwcn3610Match-

qualcommwcn3615Match-

qualcommwcn3620Match-

qualcommwcn3660Match-

qualcommwcn3660bMatch-

qualcommwcn3680Match-

qualcommwcn3680bMatch-

qualcommwcn3910Match-

qualcommwcn3950Match-

qualcommwcn3980Match-

qualcommwcn3988Match-

qualcommwcn3990Match-

qualcommwcn3991Match-

qualcommwcn3998Match-

qualcommwcn3999Match-

qualcommwcn6750Match-

qualcommwcn6850Match-

qualcommwcn6851Match-

qualcommwcn6855Match-

qualcommwcn6856Match-

qualcommwgr7640Match-

qualcommwhs9410Match-

qualcommwsa8810Match-

qualcommwsa8815Match-

qualcommwsa8830Match-

qualcommwsa8835Match-

qualcommwtr1605Match-

qualcommwtr1625lMatch-

qualcommwtr2955Match-

qualcommwtr2965Match-

qualcommwtr3905Match-

qualcommwtr3925Match-

qualcommwtr3950Match-

qualcommwtr4605Match-

qualcommwtr4905Match-

qualcommwtr5975Match-

qualcommwtr6955Match-

CPENameOperatorVersion
qualcomm:apq8009qualcomm apq8009eq-
qualcomm:apq8016qualcomm apq8016eq-
qualcomm:apq8017qualcomm apq8017eq-
qualcomm:apq8037qualcomm apq8037eq-
qualcomm:apq8039qualcomm apq8039eq-
qualcomm:apq8053qualcomm apq8053eq-
qualcomm:apq8064auqualcomm apq8064aueq-
qualcomm:apq8076qualcomm apq8076eq-
qualcomm:apq8092qualcomm apq8092eq-
qualcomm:apq8094qualcomm apq8094eq-

CPE	Name	Operator	Version
qualcomm:apq8009	qualcomm apq8009	eq	-
qualcomm:apq8016	qualcomm apq8016	eq	-
qualcomm:apq8017	qualcomm apq8017	eq	-
qualcomm:apq8037	qualcomm apq8037	eq	-
qualcomm:apq8039	qualcomm apq8039	eq	-
qualcomm:apq8053	qualcomm apq8053	eq	-
qualcomm:apq8064au	qualcomm apq8064au	eq	-
qualcomm:apq8076	qualcomm apq8076	eq	-
qualcomm:apq8092	qualcomm apq8092	eq	-
qualcomm:apq8094	qualcomm apq8094	eq	-

Rows per page:

1-10 of 5411

CNA Affected

[
  {
    "product": "Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking",
    "vendor": "Qualcomm, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "APQ8009, APQ8016, APQ8017, APQ8037, APQ8039, APQ8053, APQ8064AU, APQ8076, APQ8092, APQ8094, APQ8096AU, AQT1000, AR8031, AR8035, AR8151, AR9380, CSR6030, CSR8811, CSRA6620, CSRA6640, CSRB31024, IPQ4018, IPQ4028, IPQ4029, IPQ5010, IPQ5018, IPQ6000, IPQ6005, IPQ6010, IPQ6018, IPQ6028, IPQ8064, IPQ8069, IPQ8070, IPQ8070A, IPQ8071, IPQ8071A, IPQ8072, IPQ8072A, IPQ8074, IPQ8074A, IPQ8076, IPQ8076A, IPQ8078, IPQ8078A, IPQ8173, IPQ8174, MDM8215, MDM9206, MDM9215, MDM9250, MDM9310, MDM9607, MDM9615, MDM9626, MDM9628, MDM9640, MDM9645, MDM9650, MDM9655, MSM8108, MSM8208, MSM8209, MSM8608, MSM8916, MSM8917, MSM8920, MSM8929, MSM8937, MSM8939, MSM8940, MSM8953, MSM8976, MSM8992, MSM8994, MSM8996AU, PM215, PM3003A, PM4125, PM439, PM456, PM6125, PM6150, PM6150A, PM6150L, PM6250, PM6350, PM640A, PM640L, PM640P, PM660, PM660A, PM660L, PM670, PM670A, PM670L, PM7150A, PM7150L, PM7250, PM7250B, PM8004, PM8005, PM8008, PM8009, PM8018, PM8019, PM8150, PM8150A, PM8150B, PM8150C, PM8150L, PM8250, PM8350, PM8350B, PM ...[truncated*]"
      }
    ]
  }
]

References

www.qualcomm.com/company/product-security/bulletins/december-2020-bulletin

www.qualcomm.com/company/product-security/bulletins/december-2020-security-bulletin

Social References

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.0%

JSON

Related for CVE-2020-11212

prion1 nvd1 cvelist1