Lucene search
HistoryJun 09, 2021 - 5:15 a.m.
CVE-2020-11233
cve
2020
11233
time-of-check
time-of-use
race condition
snapdragon
auto
connectivity
consumer iot
industrial iot
mobile
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
7 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
12.7%
Time-of-check time-of-use race condition While processing partition entries due to newly created buffer was read again from mmc without validation in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
Affected configurations
Node
qualcommapq8009_firmwareMatch-
qualcommapq8009Match-
Node
qualcommapq8009w_firmwareMatch-
qualcommapq8009wMatch-
Node
qualcommapq8017_firmwareMatch-
qualcommapq8017Match-
Node
qualcommapq8053_firmwareMatch-
qualcommapq8053Match-
Node
qualcommapq8076_firmwareMatch-
qualcommapq8076Match-
Node
qualcommapq8096au_firmwareMatch-
qualcommapq8096auMatch-
Node
qualcommcsr6030_firmwareMatch-
qualcommcsr6030Match-
Node
qualcommmdm9206_firmwareMatch-
qualcommmdm9206Match-
Node
qualcommmdm9230_firmwareMatch-
qualcommmdm9230Match-
Node
qualcommmdm9250_firmwareMatch-
qualcommmdm9250Match-
Node
qualcommmdm9330_firmwareMatch-
qualcommmdm9330Match-
Node
qualcommmdm9607_firmwareMatch-
qualcommmdm9607Match-
Node
qualcommmdm9626_firmwareMatch-
qualcommmdm9626Match-
Node
qualcommmdm9628_firmwareMatch-
qualcommmdm9628Match-
Node
qualcommmdm9630_firmwareMatch-
qualcommmdm9630Match-
Node
qualcommmdm9640_firmwareMatch-
qualcommmdm9640Match-
Node
qualcommmdm9650_firmwareMatch-
qualcommmdm9650Match-
Node
qualcommmdm9655_firmwareMatch-
qualcommmdm9655Match-
Node
qualcommmsm8909w_firmwareMatch-
qualcommmsm8909wMatch-
Node
qualcommmsm8937_firmwareMatch-
qualcommmsm8937Match-
Node
qualcommmsm8996au_firmwareMatch-
qualcommmsm8996auMatch-
Node
qualcommpm215_firmwareMatch-
qualcommpm215Match-
Node
qualcommpm439_firmwareMatch-
qualcommpm439Match-
Node
qualcommpm660_firmwareMatch-
qualcommpm660Match-
Node
qualcommpm8004_firmwareMatch-
qualcommpm8004Match-
Node
qualcommpm8909_firmwareMatch-
qualcommpm8909Match-
Node
qualcommpm8916_firmwareMatch-
qualcommpm8916Match-
Node
qualcommpm8937_firmwareMatch-
qualcommpm8937Match-
Node
qualcommpm8952_firmwareMatch-
qualcommpm8952Match-
Node
qualcommpm8953_firmwareMatch-
qualcommpm8953Match-
Node
qualcommpm8956_firmwareMatch-
qualcommpm8956Match-
Node
qualcommpm8996_firmwareMatch-
qualcommpm8996Match-
Node
qualcommpmd9607_firmwareMatch-
qualcommpmd9607Match-
Node
qualcommpmd9635_firmwareMatch-
qualcommpmd9635Match-
Node
qualcommpmd9645_firmwareMatch-
qualcommpmd9645Match-
Node
qualcommpmd9655_firmwareMatch-
qualcommpmd9655Match-
Node
qualcommpmi632_firmwareMatch-
qualcommpmi632Match-
Node
qualcommpmi8937_firmwareMatch-
qualcommpmi8937Match-
Node
qualcommpmi8952_firmwareMatch-
qualcommpmi8952Match-
Node
qualcommpmi8994Match-
qualcommpmi8994_firmwareMatch-
Node
qualcommpmi8996Match-
qualcommpmi8996_firmwareMatch-
Node
qualcommpmk8001Match-
qualcommpmk8001_firmwareMatch-
Node
qualcommpmm8996auMatch-
qualcommpmm8996au_firmwareMatch-
Node
qualcommpmx20Match-
qualcommpmx20_firmwareMatch-
Node
qualcommqca4020Match-
qualcommqca4020_firmwareMatch-
Node
qualcommqca6174Match-
qualcommqca6174_firmwareMatch-
Node
qualcommqca6174aMatch-
qualcommqca6174a_firmwareMatch-
Node
qualcommqca6564a_firmwareMatch-
qualcommqca6564aMatch-
Node
qualcommqca6564au_firmwareMatch-
qualcommqca6564auMatch-
Node
qualcommqca6574a_firmwareMatch-
qualcommqca6574aMatch-
Node
qualcommqca6574au_firmwareMatch-
qualcommqca6574auMatch-
Node
qualcommqca6584_firmwareMatch-
qualcommqca6584Match-
Node
qualcommqca9367_firmwareMatch-
qualcommqca9367Match-
Node
qualcommqca9377_firmwareMatch-
qualcommqca9377Match-
Node
qualcommqca9379_firmwareMatch-
qualcommqca9379Match-
Node
qualcommqcc1110_firmwareMatch-
qualcommqcc1110Match-
Node
qualcommqcc112_firmwareMatch-
qualcommqcc112Match-
Node
qualcommqet4100_firmwareMatch-
qualcommqet4100Match-
Node
qualcommqet4101_firmwareMatch-
qualcommqet4101Match-
Node
qualcommqet4200aq_firmwareMatch-
qualcommqet4200aqMatch-
Node
qualcommqfe1035_firmwareMatch-
qualcommqfe1035Match-
Node
qualcommqfe1040_firmwareMatch-
qualcommqfe1040Match-
Node
qualcommqfe1045_firmwareMatch-
qualcommqfe1045Match-
Node
qualcommqfe2340_firmwareMatch-
qualcommqfe2340Match-
Node
qualcommqfe2550_firmwareMatch-
qualcommqfe2550Match-
Node
qualcommqfe3100_firmwareMatch-
qualcommqfe3100Match-
Node
qualcommqfe3320_firmwareMatch-
qualcommqfe3320Match-
Node
qualcommqfe3335_firmwareMatch-
qualcommqfe3335Match-
Node
qualcommqfe3345_firmwareMatch-
qualcommqfe3345Match-
Node
qualcommqln1021aq_firmwareMatch-
qualcommqln1021aqMatch-
Node
qualcommqln1030_firmwareMatch-
qualcommqln1030Match-
Node
qualcommqln1031_firmwareMatch-
qualcommqln1031Match-
Node
qualcommqln1036aq_firmwareMatch-
qualcommqln1036aqMatch-
Node
qualcommqsw8573_firmwareMatch-
qualcommqsw8573Match-
Node
qualcommqtc801s_firmwareMatch-
qualcommqtc801sMatch-
Node
qualcommqualcomm215_firmwareMatch-
qualcommqualcomm215Match-
Node
qualcommrgr7640au_firmwareMatch-
qualcommrgr7640auMatch-
Node
qualcommsd205_firmwareMatch-
qualcommsd205Match-
Node
qualcommsd210_firmwareMatch-
qualcommsd210Match-
Node
qualcommsd439_firmwareMatch-
qualcommsd439Match-
Node
qualcommsd820_firmwareMatch-
qualcommsd820Match-
Node
qualcommsdw2500_firmwareMatch-
qualcommsdw2500Match-
Node
qualcommsdw3100_firmwareMatch-
qualcommsdw3100Match-
Node
qualcommsdx20_firmwareMatch-
qualcommsdx20Match-
Node
qualcommsdx20m_firmwareMatch-
qualcommsdx20mMatch-
Node
qualcommsmb1350_firmwareMatch-
qualcommsmb1350Match-
Node
qualcommsmb1351_firmwareMatch-
qualcommsmb1351Match-
Node
qualcommsmb1355_firmwareMatch-
qualcommsmb1355Match-
Node
qualcommsmb1357_firmwareMatch-
qualcommsmb1357Match-
Node
qualcommsmb1358_firmwareMatch-
qualcommsmb1358Match-
Node
qualcommsmb1360_firmwareMatch-
qualcommsmb1360Match-
Node
qualcommsmb231_firmwareMatch-
qualcommsmb231Match-
Node
qualcommsmb358s_firmwareMatch-
qualcommsmb358sMatch-
Node
qualcommwcd9306_firmwareMatch-
qualcommwcd9306Match-
Node
qualcommwcd9326_firmwareMatch-
qualcommwcd9326Match-
Node
qualcommwcd9330_firmwareMatch-
qualcommwcd9330Match-
Node
qualcommwcd9335_firmwareMatch-
qualcommwcd9335Match-
Node
qualcommwcn3610_firmwareMatch-
qualcommwcn3610Match-
Node
qualcommwcn3615_firmwareMatch-
qualcommwcn3615Match-
Node
qualcommwcn3620_firmwareMatch-
qualcommwcn3620Match-
Node
qualcommwcn3660b_firmwareMatch-
qualcommwcn3660bMatch-
Node
qualcommwcn3680_firmwareMatch-
qualcommwcn3680Match-
Node
qualcommwcn3680b_firmwareMatch-
qualcommwcn3680bMatch-
Node
qualcommwgr7640_firmwareMatch-
qualcommwgr7640Match-
Node
qualcommwsa8810_firmwareMatch-
qualcommwsa8810Match-
Node
qualcommwsa8815_firmwareMatch-
qualcommwsa8815Match-
Node
qualcommwtr2955_firmwareMatch-
qualcommwtr2955Match-
Node
qualcommwtr2965_firmwareMatch-
qualcommwtr2965Match-
Node
qualcommwtr3905_firmwareMatch-
qualcommwtr3905Match-
Node
qualcommwtr3925_firmwareMatch-
qualcommwtr3925Match-
Node
qualcommwtr4905_firmwareMatch-
qualcommwtr4905Match-
Node
qualcommwtr5975_firmwareMatch-
qualcommwtr5975Match-
| CPE | Name | Operator | Version |
|---|---|---|---|
| qualcomm:apq8009_firmware | qualcomm apq8009 firmware | eq | - |
CNA Affected
[
{
"product": "Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables",
"vendor": "Qualcomm, Inc.",
"versions": [
{
"status": "affected",
"version": "APQ8009, APQ8009W, APQ8017, APQ8053, APQ8076, APQ8096AU, CSR6030, MDM9206, MDM9230, MDM9250, MDM9330, MDM9607, MDM9626, MDM9628, MDM9630, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8937, MSM8996AU, PM215, PM439, PM660, PM8004, PM8909, PM8916, PM8937, PM8952, PM8953, PM8956, PM8996, PMD9607, PMD9635, PMD9645, PMD9655, PMI632, PMI8937, PMI8952, PMI8994, PMI8996, PMK8001, PMM8996AU, PMX20, QCA4020, QCA6174, QCA6174A, QCA6564A, QCA6564AU, QCA6574A, QCA6574AU, QCA6584, QCA9367, QCA9377, QCA9379, QCC1110, QCC112, QET4100, QET4101, QET4200AQ, QFE1035, QFE1040, QFE1045, QFE2340, QFE2550, QFE3100, QFE3320, QFE3335, QFE3345, QLN1021AQ, QLN1030, QLN1031, QLN1036AQ, QSW8573, QTC801S, Qualcomm215, RGR7640AU, SD205, SD210, SD439, SD820, SDW2500, SDW3100, SDX20, SDX20M, SMB1350, SMB1351, SMB1355, SMB1357, SMB1358, SMB1360, SMB231, SMB358S, WCD9306, WCD9326, WCD9330, WCD9335, WCN3610, WCN3615, WCN3620, WCN3660B, WCN3680, WCN3680B, WGR7640, WSA8810, WSA8815, WTR2955, WTR2965, WTR3905, WTR3925, WTR4905, WTR5975"
}
]
}
]Social References
More
Related
nvd
nvd
CVE-2020-11233
2021-06-09 05:15:07
prion
prion
Race condition
2021-06-09 05:15:00
cvelist
cvelist
CVE-2020-11233
2021-06-09 05:00:41
threatpost
threatpost
Google Warns of Critical Android Remote Code Execution Bug
2021-01-05 20:21:40
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
7 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
12.7%
Related for CVE-2020-11233